Millions of PornHub visitors 'exposed' to browser update malware

Millions of PornHub visitors 'exposed' to browser update malware”

Pornhub, the world's most popular adult website that boasts over 26 billion satisfied visitors each year, played host to a form of malware that "exposed millions of potential victims in the US, Canada, the United Kingdom, and Australia" to infection for more than a year.

Well, if you are you might have got more than you bargained for recently, as the Kovter malware was spread via poisoned ads served up by the X-rated adult PornHub site.

The malvertising group behind the latest campaign, nicknamed KovCoreG by the researchers, used their ads on the porn site to redirect users to a scam site that asked them to download a browser update.

The malware infected the victim's system by masquerading as fake updates for popular browsers including Chrome, Firefox, and Microsoft's Internet Explorer and Edge - as either a "critical" update for the browser itself, or for software such as Adobe Flash. "For users that pass these filters, the chain delivers a page containing heavily obfuscated JavaScript identical to that used by Neutrino and NeutrAds".

Yahoo was also found to be displaying the malicious ads on its main website,, but as of last week they appeared to have been removed, independent security site ExecuteMalware said.

"We are pleased that following our notification, the site and advertising network abused in this particular attack worked swiftly to remove the infected content and keep visitors safe", he concluded.

Surfers who have been visiting PornHub could have been hit by a major "malvertising" campaign which has been underway for over a year now.

PornHub is yet to comment on the Proofpoint claims.

"This discovery underscores that threat actors follow the money and continue to flawless combinations of social engineering, targeting, and pre-filtering to infect new victims".

Although ad fraud was the name of the game this time, the payload could easily have been changed to infect users with ransomware, or information-stealers, Epstein added.

"Once again, we see actors exploiting the human factor even as they adapt tools and approaches to a landscape in which traditional exploit kit attacks are less effective".

"This discovery underscores that threat actors follow the money and continue to ideal combinations of social engineering, targeting, and pre-filtering to infect new victims, Proofpoint added".

Like this


11 October 2017
Super Mario Odyssey: Ranking All 8 Revealed Kingdoms So Far
The game is out on October 27 for the Nintendo Switch, and will be a holiday must-buy for Switch owners. Even though the hard mode was not unlocked behind the toys, Fusion Mode was the one that was unlocked.

11 October 2017
Qatar says its hosting of World Cup 'not up for discussion'
Bahrain, Egypt, Saudi Arabia and the UAE began their boycott of Qatar on June 5. Gargash's twitter attack is the second so far this week by an UAE official.

11 October 2017
Next Weeks Broker Price Targets For Skyworks Solutions, Inc. (NASDAQ:SWKS)
JP Morgan has "Neutral" rating and $88 target. (NASDAQ:DGLY) has "Buy" rating given on Monday, August 10 by TH Capital. Finally, Keybank National Association OH raised its position in Skyworks Solutions by 1.2% in the fourth quarter.

11 October 2017
Amazon targets teen shoppers with new account sharing feature
Any time they make a purchase, teens will be able to include a note that explains (or argues) why they need the particular item. On this page, there's now a new option to add a teen, as well as configure the settings associated with their account.

11 October 2017
(EOG) Shares now up at $94.18 EOG Resources Appoints C. Christopher…
Tower Rech Capital Limited Co (Trc) has 0.18% invested in EOG Resources Inc (NYSE:EOG) for 17,906 shares. (NYSE:EOG) is 15.687274. Donaldson sold 6,167 shares of the business's stock in a transaction that occurred on Thursday, September 28th.

11 October 2017
Next Weeks Broker Price Targets For K2M Group Holdings, Inc. (NASDAQ:KTWO)
Point72 Asset Management, L.p. grew its ownership by buying 187,100 shares an increase of 33.7% from 03/31/2017 to 06/30/2017. The medical device company reported ($0.21) EPS for the quarter, topping analysts' consensus estimates of ($0.22) by $0.01.

11 October 2017
Adrian Peterson Fantasy Value Rises After Trade, Jerick McKinnon Comparison
Peterson has at times seemed unhappy sharing carries with running backs Mark Ingram and Alvin Kamara. Peterson carried the ball 27 times for a 81 yards in four games with the Saints.

11 October 2017
Red Sox manager John Farrell won't return in 2018
They were swept out of the Division Series by the Indians last season and lost 3-1 to the Astros this year. In total, his record as the manager stands at 432-378, earning three division titles (2013, 2016, 2017).

11 October 2017
United Kingdom government considers social media levy to combat online abuse
Among the options is an "industry-wide levy" that would be used to fund schemes that "raise awareness and counter internet harms". No financial figure has been mentioned and would involve consultation with the industry and other stakeholders.

11 October 2017
Trump warns TV networks after nuke report
It's unclear how Trump's suggestion would work, as only television stations are subject to FCC licensing, not the networks. President Donald Trump dismissed another NBC story Wednesday, declaring that the media outlet is as fake as CNN.