News

PageFair Breach Infects Windows PCs with Trjoan Flash Installers

PageFair, a service designed to “help websites survive the rise of adblock”, has been compromised, causing websites using its software to spread malicious Trojan Flash installers the PCs of visiting users. The company, which believes that “the rise of adblocking is now leading to the death of quality free websites”, admitted in a blog post that its Content Distribution Network (CDN) services account, used to serve its analytics JavaScript tag, had been compromised by hackers. The CDN was modified to distribute a Trojan botnet in the form of a fake Adobe Flash update for Windows.

Sean Blanchfield, CEO of PageFair, revealed in a blog post the attack took place on 31st October, was seemingly designed to target PageFair specifically, and lasted for just over 80 minutes.

“For 83 minutes last night,” the post reads, “the PageFair analytics service was compromised by hackers, who succeeded in getting malicious javascript to execute on websites via our service, which prompted some visitors to these websites to download an executable file. I am very sorry that this occurred and would like to assure you that it is no longer happening.”

While PageFair is taking its share of responsibility for the attack, Ben Hartnett, VP of EMEA at security firm RiskIQ, thinks that it merely demonstrates how sophisticated hackers are becoming.

“We all know that hackers are getting smarter about how they distribute malware. The latest attack on PageFair shows how hackers are now actively targeting third-party components in a bid to reach a much larger number of victims,” Hartnett told The Inquirer. “By compromising PageFair’s analytics service, hackers were able to distribute malicious code to visitors of any website using this service. With organisations increasingly relying on their online presence to engage with customers, this style of attack is only going to increase, especially with organisations adopting more third party components to stay ahead of the competition.”

Ashley Allen

Disqus Comments Loading...

Recent Posts

Twitch Now Banning All Content Focusing On Intimate Body Parts

As by now, I'm sure you are aware Twitch has decided to go ahead and…

5 hours ago

Seconds Patch of “Operation Medic Bag” For Payday 3 Released

I doubt many of you have been keeping up with Payday 3 which is understandable…

7 hours ago

MSI Announces SPATIUM M580 FROZR With A Huge Cooler

Today MSI has announced a new Gen 5 SSD, the SPATIUM M580 FROZR which comes…

7 hours ago

LENRUE PC Speakers, USB/USB-C Powered Computer Speakers with Loud Stereo Sound

Stereo and Noiseless - Without any noise! After multiple debugging, suppress static. Become clearer and…

8 hours ago

HP M27f Ultraslim Monitor 27 Inch

PICTURE-PERFECT IMMERSION – Work or play on a monitor that redefines high definition with its…

8 hours ago

Govee LED Light Bars, Smart WiFi RGBIC TV Backlight

Syncs With Your Music: With an internal high-sensitivity mic, Govee Flow Plus LED light bars…

8 hours ago