Got to be a class action opportunity for the lawyers in this.
Pop trash giant PerezHilton.com has served the world's most dangerous exploit kit to some of its 500,000 daily visitors. The site is home to Hollywood and celebrity news and has been pwned before under hugely successful malvertising campaigns using the dominant Angler exploit kit. Cyphort researcher Nick Bilogorskiy says the …
Is that really their job? surely the browser makers , and runtime people - java flash whatever , should be coming up with some way of properly sandboxing a webpage, and if thats too difficult (probly due to Adobe) then browsers should have an easy to use "safe mode" where all potential nasties are switched off.
Problem is at the moment you switch that stuff off and nothing works - including things that dont need "that stuff" . so web developers should be taking some responsibility too.
After all , its just conceivable that your drive by attack might not be dispensed by an advert , you might have actually strayed onto a malicious site, and that would bypass any number of 'best practice' rules the ad agencies cobbled up.
"That is yet to be proven in a court of law."
What are you talking about?!
If you connect to a URL that that's the web site that you are connecting to. I don't care if the back-end web page data comes from a static html page on your web server or a cast of bloody thousands supplying a stream of web analytics, advertising, tracking et al. ALL of it is the responsibility of the owner - if the owner is stupid enough to resell space on their web site for Ads that turn out to be malware, I'm coming after you as the site owner.
If you go to this guys website, you deserve this.
Seriously though... anyone with a popular blog (or whatever you call this trash) should have enough brains to pay for a decent service which maintains credible security and has applications which don't rely on Flash, Java, etc. to make it "pretty".
Just like businesses which continue to use WordPress to punch out web sites and then throw their arms up when it gets hacked into... you're going to get what you pay for and you wont learn until it happens.
I'd like to see what the outcome is, if a class action lawsuit is brought up. Will definitely be more entertaining than Mr. Hilton's web site.
Normally I'm of the opinion that the sort of person who compromises sites to serve up malware should be nailed to the cross and have their goolies blowtorched.
In this case I can't help thinking they should get an award for single-handedly raising the global index of good taste by a noticeable amount.....
If you run an imageboard and it gets flooded with childporn that you don't bother to remove it's your server the authorities are going to nick when they begin the investigations.
Or witness the pirate bay getting their shit pinched just for having links to commercial content.
Same could easily be applied here. You open up your website to shady adscammers and end up hosting digital herpes it's your door the jackboots should be kicking down first.
For the rest of us there's adblock.
Biting the hand that feeds IT © 1998–2019