Malicious Ads Infect Thousands

According to a blog post on Trend Micro’s website, a rash of malicious ads spreading crypto ransomware may have exposed tens of thousands of web users in the past 72 hours.

The post states that many popular web sites like the New York Times, BBC, AOL and MSN were injected with ads that try to install ransomware along with other malware on the computers of visitors to their website.

Malwarebytes, is saying that many more high profile sites including,,,,, and, have also been affected.

It also appears that some adtech companies were affected by this as well. Names like Google, Appnexus, AOL, and Rubicon were unkowningly part of the delivery engine. The malicious ads seem to be tied to two suspicious domain names, including and

Separately, Trustwave’s SpiderLabs also confirmed that many of these high profile sites delivering the malicious ads were making calls to a JSON file which refers to a suspicious JavaScript file with more than 12,000 lines of code contained in it.

Unfortunately, this has become the inevitable norm in the digital landscape. Criminals will always be looking for a way to infect end users systems. While the problem continues to be worked on, this incident underscores the need for all web users to keep their systems up-to-date. While not a complete solution, this at least will make it more difficult.