US iOS users targeted by massive malvertising campaign

[silversurfer]

A cyber-criminal group known as ScamClub has hijacked over 300 million browser sessions over 48 hours to redirect users to adult and gift card scams, a cyber-security firm has revealed today.

The traffic hijacking has taken place via a tactic known as malvertising, which consists of placing malicious code inside online ads.

In this particular case, the code used by the ScamClub group hijacked a user's browsing session from a legitimate site, where the ad was showing, and redirected victims through a long chain of temporary websites, a redirection chain that eventually ended up on a website pushing an adult-themed site or a gift card scam.

These types of malvertising campaigns have been going on for years, but this particular campaign stood out due to its massive scale, experts from cyber-security firm Confiant told ZDNet today.

Source: https://www.zdnet.com/article/us-ios-use...-campaign/