On Friday one of the most heavily trafficked news sites here in Denmark, ekstrabladet.dk (where I'm employed) offered its visitor a nasty little treat: A back door on their PC, installed on the computer using some sort of code injection in one of the advertising banners.

The problem has been solved now, with the help of a Danish security firm, and the evil banner, who was sold by a 3rd part of some kind, is no more.

After the incident, the editor wrote an article describing how to check the computer and see, if it had been infected.

The culprit banner has been used on a number of Danish news sites.

This once again shows how important it is to make sure, that someone has some sort of control over the banners, since Danish online news site børsen.dk (according to Danish blogger Dorte Toft) had the same problem earlier this year.

• Suggestion: Secure login at Bloglines (3)
• Oh, how nice: Another PayPal scam (0)
• Firefox 3 requires secure updates from extensions (6)
• FBI losing laptops (0)
• Did you know that snooping other people's open WiFi is illegal? (0)

Tags: banners, code injection, dorte toft, ekstrabladet.dk, Security

Security Comments 0 Dec 17th, 2007

Leave a Reply