|
|
Malicious online ads have plagued the Web for some time, but a series of recent eventsfrom an attack targeting NYTimes.com in September to a number of civil lawsuits filed by Microsofthave turned the spotlight on the problem once again.
Among the groups fighting all this is Google. Earlier this year, the company redesigned the site Anti-malvertising.com to add more educational content to supplement a custom search engine designed to help ad network customers conduct quick background checks. As part of Cyber Security Awareness Month, Google has issued a number of tips to help users and Web publishers alike.
|
|
|
|
- Know Who You're Working With
Publishers should research the domain names of ads' click-through URLs, as well as the domains for advertisers' and agencies' companies. If a domain was registered recently, the domain registrant's name and contact information is hidden or false it should send up red flags. - Secure Partners
Publishers should be aware that different ad networks and exchanges may have significantly different standards for malware detection, Google said, adding the company strongly advises against using networks or exchanges without strong anti-malware security measures in place. - Perform Comprehensive Q&A on Ad Content
Sites such as Wepawet and Adopstools should be used to scan Adobe Flash Player, JavaScript and PDF files before they are allowed to run. Test each core creative and all files the creative's code invokes, and use SWF-to-XML converter to detect references made from each SWF file. If the converter fails with an error, treat the creative with suspicion, Google advised. - Proper Planning
Having a strong response plan in place is important to ensure a quick reaction to a threat, Google said. - Fake Anti-Virus
Rogue anti-virus scams are a common threat on the Web. Such operations often pull in significant profits by tricking users into paying for software that does nothing, and malvertising often figures into such schemes. An example of this is the recent attack targeting visitors to NYTimes.com. To avoid this, Google suggests users research a company's reputation before downloading its software or visiting its site. - Follow Standard End-User Best Practices
This includes making sure your browser, operating system and anti-virus are fully patched. Google also urged users to exhibit caution when they are prompted to download an e-mail attachment, follow an instant message link or install a plug-in or unfamiliar piece of software.
|
�������xڽZ[s۸�~~�d_nw7�ŗXbw�IHB��,�JV��eS�j�y�|8�o�i�&4�oAu�B�>�K9�lHbc.!KvfzC7o`�`ƛV�YQ|v$�UK*7�-;RL�DL1OwҨxLO^>.B࿎F�:���|=F#mX021q�#�yF.#An{R�7Yh[((6j{A،L���QLD�ruzH&$fvȿ�+����|>o~QLg\�M�<4#9
"��L7'f*Ή{'_t�t6g�4Wln(3сױ1,�?ۈnS3�a�ܰ)M�)vtZ4ܪwP臑WhNd�m�\)I�;-<><:�1)+Vʢ M�&x9tKS:f:bL��ÃnF1>�PC
�';�!{0#p\V5�Ra�5�G\攪1O|؈{G{(�a(;}�eq+)P�0nC�-U�̥z�U\Ɋn�'p�`� Ձ
^2R`-*��T� հq셜Þݙo&)?���>d R_�E!*aR= �>I�qv*
.[1aCuTD,O4͌3�Ky �W&�?�׀c:�sBrZ)ĺQĴdv-[�9Ϛ 7s.9n
�ٝօr�I�/ �ah��~I%_zlgŎv�jf�]f�fSO0[h>\
!I$STؖN�
ik'?aWy�Qq�& XR?Ó,)uN~t@���|@>��c/1)rd|�>s\�Mb�SH�;�{�$+}7i�c�q�D�8 +9�(<
^0Z�V� ��{7Ve�Lt"�dY>� "6#�h9p\+ɻt�qO@�"f.[㑙C�B0e�_�.Ն^ovﶍ#+𫄐Х$^�X�r:=
vA͘�wsN%!�JfI+knsqeQ�ap�S�#���Z7�>g6�7c�
3O�#�$��vjڧD�w�%
vӂ��ֽ�WˆלWestOuO~)\9c.��4ga-q�
a�cp+)=�jѤ:�>*7p}SU��A^8/V��K@V�nc�F��јf�TT>�g�_�Y#xO3+�(XP.�u1sg�ֽ]0?� �V|ț�jUxמ�o4g{l
qEig��`oiXI%k#x`+,B!�S]O�LmSg�NVӪ2�讞]BU:���m-.�U��3g`GG�*a�r�;LmTkq�ء�9��j[Xo�2cQ�J�v�V_�ܔ�&˼C]`I`z#p7PD'RMApuP�y#�y&յy8$Pc.kEb
�oDz j�*cnW~#�Z3�H䈘 �M؞(�.�D-bt7��"�)t�h8ɗn�&�5 ;όF�)xp98R.'2]([y�w~��ޑZuU�)RX^c݆��̪f�;OY�*@Λ�5`(�3<>яv&NXyB�)@
SPp�xdMADfTaz8�a��k`�9� &�*nZS�4,PB
qٓu"f�I^K�erDd�T!Ǫl�o�r AmkB� Cs.)�(i��ͩu ?YdbPds[�6d$ͺ4X9X���$��ww�v��3�]�»C.0x`
���acmA4sǑg,Rm�.!����?^>qL玩&G
�\01cX{�}=+�rx>�qek�ZFEbp\|rv�P~|x{/:
�L"s}{z�a��p�'xtOO{W��p
�QXa,m7:~y�3N�e`�)7}x/�\t|�Z�h3�Ow�?7mXΊF+c+�Ѩ�~=ŴYI2UeTF,7vZFS��Ƽ
ܟ.^�:��w%16:�tq@N㭲P�ƫ�zD>,��
|
Network Security & Hardware 
See All Slideshows