Ars Technica reports that the tainted ads may have exposed tens of thousands of people over the past 24 hours alone. According to a blog post published Monday by Trend Micro, the new campaign started last week when "Angler," a toolkit that sells exploits for Adobe Flash, Microsoft Silverlight, and other widely used Internet software, started pushing laced banner ads through a compromised ad network. Spiderlabs has found ads with more than 1200 lines of obfuscated code designed to slip past security software. Malwarebytes reports that the surge started this weekend, and includes sites like msn, nytimes, bbc, aol, my.xfinity, nfl, realtor.com, theweathernetwork.com, thehill, and newsweek. Affected networks included those owned by Google, AppNexis, AOL, and Rubicon. [more inside]
"The best thing that you, as a user, can do to get better ad-supported content is to install a tracking protection tool." - Don Marti [more inside]
Google has removed Ad Blocking apps from their Play Store. AdAway is available on the open source Android repository F-Droid. AdBlock+ remains available from their own site.