Adf.ly victim of "Malvertising"

Just an article posted by Malwarebyte’s.

https://blog.malwarebytes.org/intelligence/2015/06/elusive-hanjuan-ek-caught-in-new-malvertising-campaign
" In this post, we describe a malvertising (https://blog.malwarebytes.org/malvertising-2/2015/02/what-is-malvertising/) attack spread via a URL shortener leading to HanJuan EK, a rather elusive exploit kit which in the past was used to deliver a Flash Player zero-day (https://blog.malwarebytes.org/exploits-2/2015/02/hanjuan-ek-fires-third-flash-player-0day/). "

because Adobe Flash is inferior, by nature of its own code, it will always be vulnerable to zero-day attacks of this nature.
Really, something new should take over Flash. It will never be 100% safe from zero-day exploits.
Same with Java.

There’s more in the article that talks about the vulnerability that compromises your system with this recent zero-day attack.

But, I’ve mentioned before, it helps if you have Malwarebyte’s "Anti-Exploit" running to protect your web browser.
Anti-Malware doesn’t proect against this entirely.
You need Anti-Exploit.
It’s a separate program with separate installer. :smrt:

It will never be combined with the Anti-Malware program.
Malwarebyte’s isn’t into All-In-One solutions since those types require the most debugging and fixing than anything on the face of this infested earth.
Which is why Anti-Malware and Anti-Exploit are so damn good. :smrt:

Free version is good enough.
Paid version lets you add custom protection to things like media players (that’s not already on the list since there over a dozen media players out there) that connect to the internet for streaming.

https://www.malwarebytes.org/antiexploit/
Protect against crappy Adobe and Java web development!
Protect against zero-day attacks!

Since there are people on this forum that use Adf.ly for sharing links, please consider isntalling and using Anti-Exploit.
Uploaders, please urge downloaders about Anti-Exploit.

———- Post added at 02:34 PM ———- Previous post was at 02:26 PM ———-

Don’t forget, it’s a free service. You get what you pay for.

A lot of file hosting sites will use advertising.
Mega doesn’t. But they also use HTML5, so there will never be an ad or virus warning of any sort.
MEGA doesn’t use Flash or Java. :smrt:

Free hosting has to make some revenue and often don’t have any say in what ads will be used.
Shrine has had the same problem a few times when their recycled ads had one that was known to be malicious (through no fault of anyone).

Some of my older posts still have adf.ly links but i stopped using it a while ago. Too much effort to change them all.

On a similar note,

users should be weery when clicking on any random link shortener.
Some popular link shortening services are easily leading to malware and other hostile environments with no idea of what you’re clicking on.
Anti-Exploit + Anti-Malware should help protect against those.

Google shortener, tinyurl have been involved in cases of malicious activity when random people clicked on random links without knowing who posted what.
Brain power activate! :smrt:

using adblock fixing also malicious ad 😉

You are always full of useful information Sparktank, thanks. 🙂

Sometimes when I click on a Google search link for something from the JWFan forums, it redirects me to a porn site. Why does it do that?

Sometimes when I click on a Google search link for something from the JWFan forums, it redirects me to a porn site. Why does it do that?

:erm: I don’t know. lol.
Whoever’s managing their site might not have the best security up and someone found a way to share their porn.

These kinds of things don’t pop up in security blogs or commonly known security reports for security programs.
The maintaining of a website is not up to people like Malwarebytes or Avast.

If this happens a lot when you google, regardless of website, there’s a good chance you have a virus that just wants to make you happy.
If it happens only to JWFans, they should be notified. But they probably already know about it and not much can be done unless they exceed their regular donations to upgrade the features of their forum?

It’s beyond me.
Personally, I just think you’re some kind of pervert that won’t share porn. :-/

dled, installed, giving it a try.

On a similar note,

users should be weery when clicking on any random link shortener.
Some popular link shortening services are easily leading to malware and other hostile environments with no idea of what you’re clicking on.
Anti-Exploit + Anti-Malware should help protect against those.

Google shortener, tinyurl have been involved in cases of malicious activity when random people clicked on random links without knowing who posted what.
Brain power activate! :smrt:

A very sweet links shortener is provided by the french computer mag "Canard PC". it works well, but I don’t know how long the shortened links are valid.

here it is: CPC – Crush LinX (Want small URL ?) (http://cpc.cx/)

And if you wonder who Terraboule tech is, it’s one of the magazine journalists, Doc Terraboule, their hardware specialist.

also, there is never too much malwarebytes software on your PC.

I’ve never trusted ad.fly. I’ve never used my links on them, nor have I been very keen on continuing with them…

Continuing on what somebody said earlier about link shorteners, yes – be careful when clicking on them. The way I check is to eiher right click on the link, Inspect the Element and check what link it will redirect you to.
Or, open it in Incognito mode and as soon as you think it’s suspicious in any way, exit it.

The for the info Sparky, blind linking is risky so such a tool would be a nice addition to ones security perimeter.