Your favorite websites might be secretly redirecting you to malware, and ad companies are helping them do it




  • Push notifications are now being used as malware delivery systems, and users are unknowingly subscribing to them
  • Fake CAPTCHA prompts are now the gateway to persistent browser hijacks and phishing attacks
  • WordPress sites are quietly hijacking users through invisible DNS commands and shared JavaScript payloads

Recent investigations have revealed a troubling alliance between WordPress hackers and commercial adtech companies, creating a vast infrastructure for distributing malware on a global scale.

Research from Infoblox Threat Intel found at the core of this operation is VexTrio, a traffic distribution system (TDS) responsible for rerouting web users through layers of fake ads, deceptive redirects, and fraudulent push notifications.



Source link

Leave a Reply

Your email address will not be published. Required fields are marked *