http://www.welivesecurity.com/2016/12/06/stegano-exploit-kit/
[QUOTE]
What does your discovery mean for internet users?
It means that there are advertising banners with "poisoned pixels" leading to a
new exploit kit, intended to enable the bad guys to remotely install malware onto victims' computers. The victim doesn't even need to click on the malicious
ad content; all it takes is to visit a website displaying it. If the victim's computer runs a vulnerable version of Flash Player, the machine will be compromised via an exploited vulnerability automatically.
[...]
Where are the poisoned pixels in this?
Well, the name "Stegano" refers to steganography[1], which is a technique the bad guys used to hide parts of their malicious code in the pixels of the advertisements' banners. Specifically, they hide it in the parameters controlling the transparency of each pixel. This makes only minor changes to the (color) tone of the picture, making the changes effectively invisible to the naked eye and so unnoticed by the potential victim.
[/QUOTE]
[1]
http://www.virusradar.com/en/glossary/steganography
)\/(ark
Always Mount a Scratch Monkey
Do you manage your own servers? If you are not running an IDS/IPS yer doin' it wrong...
... The pursuit of truth will set you free. Even if you never catch it.
---
* Origin: (1:3634/12.73)