Ukrainian man behind a slew of fake companies that delivered malicious ads on legitimate sites.
A Ukrainian man has been arrested in the Netherlands and extradited to the US, where he was arraigned last Friday in front of a New Jersey judge to face charges of orchestrating malvertising campaigns for almost five years.
According to court documents, Oleksii Ivanov, 31, has been behind multiple fake companies that operated from October 2013 through May 2018 and shipped over 100 million bad ads to users all across the world.
SUSPECT USED STRING OF FAKE COMPANIES
Ivanov and co-conspirators operated by registering a fake company, buying ad space from advertising networks on legitimate sites, and delivering ads containing malicious code (called malvertising) that redirected users to sites peddling malware.
US investigators said that Ivanov would often claim his innocence and deny any involvement with the bad ads when the malvertising campaigns would be uncovered and the victimized ad networks would reach out with inquiries.
If the ad networks would suspend his companies’ accounts, Ivanov would simply register a new firm, usually in the UK, and continue from where he left off.
Ivanov and his co-conspirators, none of which were named in court documents, also used fake personas to hide their real identities when interacting with the ad networks.
Most of the time, investigators said, Ivanov’s malicious ads redirected users to websites peddling malware-laced files.
US prosecutors said Ivanov also built a malware botnet during the time he carried out the malvertising operations.
Fortune 100 passwords, email archives, and corporate secrets left exposed on unsecured Amazon S3 server
Fortune 100 passwords, email archives, and corporate secrets left exposed on unsecured Amazon S3 serverSome of the world’s biggest companies have had 750GB worth of their innermost secrets revealed on unsecured Amazon S3 buckets, available for anybody to download – no...
New Microsoft Excel Attack SurfacesResearchers have identified a security hole in Microsoft Office’s Excel spreadsheet program that allows an attacker to trigger a malware attack on remote systems. A feature in Microsoft Office’s Excel spreadsheet program called Power...
Malicious URL attacks using HTTPS surge across the enterpriseCyberattacks launched against the enterprise which makes use of the HTTPS protocol are increasing alongside spoofing and cloud-based threats, new research suggests. According to FireEye's Q1 2019 Email...
Stay Up to Date With The Latest News & Updates
Join Our Newsletter
Get weekly tech updates and immediate alerts when there is a zero-day or security issue!