Massive AdGholas Malvertising Campaigns Use Steganography and File Whitelisting to Hide in Plain Sight Proofpoint US

Proofpoint researchers have realized and analyzed a enormous malvertising community working since 2015. Run by a threat actor we special as AdGholas and pulling in as many as 1 million client machines per day. This malvertising operation contaminated thousands of sufferers each day using a sophisticated mixture of strategies together with sophisticated filtering and steganography, as analyzed by fellow researchers at Trend Micro. While AdGholas looks to have ceased operation in the wake of action by advertising community operators following notification by Proofpoint, the scale and sophistication of this operation demonstrate the persevered evolution and effectiveness of malvertising.

fiddler. fiddler. srvc. dll/icon.

See also  Mozilla lays off percent of its staff as Firefox and Edge duke it out for second place PC Gamer