02-02-2014 06:28 AM - edited 02-02-2014 06:31 AM
Bad ads strike again, this time affecting visitors to video-sharing site DailyMotion. The site showed malicious ads to visitors and directed them to a different site pushing a fake antivirus scam.
Users visiting the DailyMotion homepage with the malicious ad were being redirected via an invisible iframe to a malicious site hosted in Poland, according to a write-up and video by security company Invincea. The malicious site displayed a warning from "Microsoft Antivirus" that a critical process must be cleaned to prevent system damage. If the user clicked on the accompanying dialog box to remove the infection, malware—in this case, a variant of the Graftor Trojan—was downloaded onto the computer.
Invincea initially uncovered and reported the problem back on January 7 http://www.invincea.com/2014/01/dailymotion-com-re
DailyMotion informed Security Watch in a support email on Saturday afternoon that the problem has been solved, but did not provide any other details. Considering that Invincea reported the problem twice within a month, the lack of information doesn't really inspire a lot of confidence in the site at the moment.