Year-long malvertising attack put millions of Pornhub users at risk of nasty infection

By midian182 ยท 5 replies
Oct 11, 2017
Post New Reply
  1. Pornhub, the world’s most popular adult website that boasts over 26 billion satisfied visitors each year, played host to a form of malware that “exposed millions of potential victims in the US, Canada, the UK, and Australia” to infection for more than a year.

    Security firm Proofpoint detected the large-scale malvertising attack, which it says was carried out by the KovCoreG group as a way of infecting visitors with the Kovter ad fraud malware. The software performs click-fraud operations as a way of generating revenue for its authors.

    The hackers infiltrated Pornhub’s Traffic Junky advertising network to push fake Edge, Firefox, Chrome, and Flash updates onto users. Downloading and installing the file would infect computers with Kovter, which could then use the machine to click on fake ads and generate money for websites.

    “While the payload in this case is ad fraud malware, it could just as easily have been ransomware, an information stealer, or any other malware,” Proofpoint said. “Regardless, threat actors are following the money and looking to more effective combinations of social engineering, targeting and pre-filtering to infect new victims at scale.”

    It was noted that Pornhub and the Traffic Junky ad network acted quickly to address the matter once they were made aware of the attack.

    "The combination of large malvertising campaigns on very high-ranking websites with sophisticated social engineering schemes that convince users to infect themselves meTans that potential exposure to malware is quite high, reaching millions of web surfers," added Proofpoint.

    Pornhub, which is rated as the 38th most popular website in the world by Alexa, has yet to comment on the matter.

    Permalink to story.

  2. Skidmarksdeluxe

    Skidmarksdeluxe TS Evangelist Posts: 8,647   +3,279

    "Pornhub, which is rated as the 38th most popular website in the world by Alexa, has yet to comment on the matter".
    Perhaps a few years free subscription to their 'services' would speak volumes for their users rather than the usual stock, standard & very predictable comments that nobody pays any attention to anymore.
  3. Uncle Al

    Uncle Al TS Evangelist Posts: 4,000   +2,488

    Nasty infection? So now you got to use a rubber suit for safer internet sex!
    dms96960 likes this.
  4. Faelan

    Faelan TS Member Posts: 16

    I always use my iPad when, for one reason or the other (mostly curiosity), going to a site that I suspect might be dodgy.
  5. jobeard

    jobeard TS Ambassador Posts: 11,905   +1,273

    Flash has always been an infection vector and to allow an update via a popup is asking for trouble.

    Get Flash updates ONLY by accessing
  6. captaincranky

    captaincranky TechSpot Addict Posts: 13,651   +3,111

    Yeah but, the rubber gloves are likely to wreak havoc if you're using a touch screen.

Similar Topics

Add your comment to this article

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...