Author Topic: Openx ad server of compromised  (Read 3376 times)

0 Members and 1 Guest are viewing this topic.

December 25, 2010, 03:04:05 pm
Read 3376 times


  • Administrator
  • Hero Member

  • Offline
  • *****

  • 3335
The openx ad server of has been compromised.

Code: [Select]
contains an iframe which leads to a Phoenix exploit kit.

We have seen various iframe urls.

Current destination (changes sometimes ) is :
Code: [Select]

which redirects to
Code: [Select]
payload url is
Code: [Select]

Ruining the bad guy's day