https://www.channelfutures.com/wp-content/themes/channelfutures_child/assets/images/logo/footer-new-logo.png
  • Home
  • Technologies
    • Back
    • Analytics
    • Artificial Intelligence
    • Cloud
    • Data Centers
    • Desktop
    • IoT
    • Mobility
    • Networking
    • Open Source
    • RMM/PSA
    • Security
    • Virtualization
    • Voice/Connectivity
  • Strategy
    • Back
    • Best Practices
    • Business Models
    • Channel 101
    • Channel Programs
    • Channel Research
    • Digital Transformation
    • Diversity & Inclusion
    • Leadership
    • Mergers and Acquisitions
    • Sales & Marketing
    • Specialty Practices
  • MSSP Insider
    • Back
    • Business of Security
    • Cloud and Edge
    • Endpoint
    • Network
    • People and Careers
    • Training and Policies
  • MSP 501
    • Back
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Our Sponsors
    • From the Industry
    • Content Resources
    • COVID-19 Partner Help
    • Galleries
    • Podcasts
    • Reports
    • Videos
    • Webinars
    • White Papers
  • EMEA
  • Awards
    • Back
    • Excellence in Digital Services
    • 2020 MSP 501
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Partners Evolution
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
  • Channel Mentor
    • Back
    • Channel Market Intelligence
    • Channel Educational Series
Channel Futures
  • NEWSLETTER
  • Home
  • Technologies
    • Back
    • Analytics
    • Artificial Intelligence
    • Cloud
    • Data Centers
    • Desktop
    • IoT
    • Mobility
    • Networking
    • Open Source
    • RMM/PSA
    • Security
    • Virtualization
    • Voice/Connectivity
  • Strategy
    • Back
    • Best Practices
    • Business Models
    • Channel 101
    • Channel Programs
    • Channel Research
    • Digital Transformation
    • Diversity & Inclusion
    • Leadership
    • Mergers and Acquisitions
    • Sales & Marketing
    • Specialty Practices
  • MSSP Insider
    • Back
    • Business of Security
    • Cloud and Edge
    • Endpoint
    • Network
    • People and Careers
    • Training and Policies
  • MSP 501
    • Back
    • 2020 MSP 501 Rankings
    • 2020 Hot 101 Rankings
    • 2020 MSP 501 Report
  • Intelligence
    • Back
    • Our Sponsors
    • From the Industry
    • Content Resources
    • COVID-19 Partner Help
    • Galleries
    • Podcasts
    • Reports
    • Videos
    • Webinars
    • White Papers
  • EMEA
  • Awards
    • Back
    • Excellence in Digital Services
    • 2020 MSP 501
    • Top Gun 51
  • Events
    • Back
    • CP Conference & Expo
    • Channel Partners Evolution
    • Channel Evolution Europe
    • Channel Partners Event Coverage
    • Webinars
  • Channel Mentor
    • Back
    • Channel Market Intelligence
    • Channel Educational Series
    • Newsletter
  • REGISTER
  • MSPs
  • VARs / SIs
  • Digital Service Providers
  • Cloud Service Providers
  • CHANNEL PARTNERS ONLINE
 Channel Futures

From the Industry


Sponsor Content

image

2017 Projections for the Growing Threat of Malvertising

  • March 9, 2017
As we progress into 2017, it’s helpful for MSPs to take stock of the most pressing hazards of the current threat landscape. Read why malvertising is a growing problem, with such a ubiquitous and seemingly benign attack vector (online ads) that even your most vigilant customers might fall victim.

As we progress into 2017, MSPs should pause and take stock of the most pressing hazards currently on the threat landscape. In further excerpts taken from his recent podcast discussion with IT channel expert Pedro Pereira, Webroot Senior Threat Research Analyst Tyler Moffitt details which cyber threats merit close attention as the year continues to unfold.

“Beyond the Internet of Things, which is a whole different category that’s scary in itself, the more generic threats we see on PCs, laptops, and on phones are all still on the radar.” Moffitt begins. “In tandem with those I would list phishing and exploit kits together, since they’re making advancements, as well.”

After going on to discuss the efficacy of phishing schemes that employ fake log-in pages (“it’s the most effective method of compromise”), Moffitt pauses to reconsider his choice for the most virulent threat for the new year. “You know what?” he muses. “I think I’m actually going to have to give it to malvertising, because malvertising has been explosive in 2016, and it’s on track to even be more destructive in 2017.”

Because malvertising may be unfamiliar to many IT professionals, Moffitt first provides a brief description of how malvertising operates: “Essentially, cyber criminals submit booby-trapped advertisements to ad networks for their real-time bidding processes. And these ad networks that supply the ads … you might not know it, but it’s not done by a human. It’s all done by an algorithm.”

Exploiting this lack of human oversight, the cyber criminals begin by lulling the ad networks into a false sense of security. According to Moffitt, “These guys submit authentic ads for a couple weeks, so they get a decent reputation that will last for a little while. Then they submit the booby-trapped ads. These malicious ads rotate with normal ads on legitimate, highly reputable sites. After that, victims don’t have to do anything but click on the ad.”

This innocuous activation of the threat disguises a particularly diabolical process, Moffitt notes. “You click the ad, and then an invisible iFrame redirects you to an exploit landing page, where the malicious code then attacks your system. You see an advertisement for shoes that looks like any other, normal ad. You click on that ad, and then all of a sudden your documents are encrypted. It’s not as if it even downloads a file at the bottom left of your browser that you have to click on before it can run.”

Moffitt concludes, “The exploit landing page is typically so well implemented—attacking Flash Player, Java, Word and Silverlight vulnerabilities—that it’s able to download the DLL and unload its instructions into the memory of the browser, whether it’s Internet Explorer, Firefox or Chrome. That open process, active process, is actually being used to perform the encryption on you. It’s definitely scary and something to watch out for.”

Advertising on the Internet continues to proliferate at a rapid pace, making it urgent for MSPs to alert their clients to the growing malvertising menace. As such a ubiquitous and seemingly benign attack vector, online ads can lull even your most vigilant customers into complacency—with disastrous consequences. As always, keeping your clients educated about the latest cyber threats is key to maintaining their security.

Download the 2017 Webroot Threat Report to stay up-to-date on the threat landscape.

This guest blog is part of a Channel Futures sponsorship.

 

 

 

Tags: Cloud Service Providers Digital Service Providers MSPs VARs/SIs From the Industry Technologies Webroot Sponsor Content

Related


  • cybersecurity predictions
    Cybersecurity: What to Expect in 2021
    Remote work is here to stay (and other cybersecurity predictions for the year ahead).
  • Security shield on digital background
    Lockdown Lessons: Securing Your Business First
    When you consider modern attacks, it’s pretty obvious that all businesses—managed service providers (MSPs), small- to medium-sized businesses (SMBs), etc.—need a strong lineup of cyber-defense tools, not just a barebones firewall and old-fashioned antivirus. You need to protect your business first, and to do that, you have to build out a strong cybersecurity stack that […]
  • 2017 Projections for the Growing Threat of Malvertising
    Lockdown Lessons: Shoring up Your Network and Security Policies
    Ultimately, every business wants to do what they can to best serve their clients and customers. They also want to grow successfully, increase profits and create lasting relationships for long-term recurring revenue. But in today’s, if you don’t have a good security setup, the chances you’ll get breached get higher every day. That means all […]
  • Making Money with Security Awareness Training
    The volume and sophistication of cyberattacks that target your clients have skyrocketed in the past few years. And, in addition to the advancements in threat trends, your clients’ cyber resilience needs have also changed. The majority of your clients know their employees are on the front lines of their cybersecurity defenses. They also understand that […]

Leave a comment Cancel reply

-or-

Log in with your Channel Futures account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • Lockdown Lessons: Why Hackers Hack - The Stereotype
  • Implementing a Layered Cybersecurity Strategy
  • 16 Questions to Ask Clients in a Vulnerability Assessment
  • How to Mitigate the Risk of Social Engineering and BEC Attacks

Galleries

View all

New, Changing Partner Programs: AWS, Tech Data, Avaya, Verizon

January 11, 2021

Industry Perspectives

View all

The Rise in Remote Work Increases the Need for Patch Management

January 27, 2021

Partners Share Their 2021 Goals—and Plans for Achieving Them

January 26, 2021

The Importance of Being Security-Centric

January 22, 2021

Webinars

View all

Your Network Perimeter Has Changed

February 18, 2021

In Case of Emergency: The Importance of Proactive Critical Event Management

February 23, 2021

How Managed Hosting Providers Thrive with the Alternative Cloud

February 24, 2021

White Papers

View all

Product Brief: Kaseya VSA Integrated Workflows with BMS and IT Glue

January 26, 2021

Why Subscription Business Model

January 15, 2021

The Ultimate MSP Guide to Sales Efficiency

January 14, 2021

Upcoming Events

View all

Channel Partners Virtual

March 2, 2021 - March 4, 2021

Channel Partners Conference & Expo

November 1, 2021 - November 4, 2021

Videos and Fastchats

View all

FASTCHAT: How SOAR Eliminates Security Challenges and Elevates Service Provider Revenues

January 6, 2021

Happy Holidays from Channel Partners & Channel Futures!

December 21, 2020

FASTCHAT: How Old, Unpatched Technologies Are Creating New Security Threats for MSPs and Their Customers

December 3, 2020

Twitter

ChannelFutures

Building an efficient and profitable #patchmanagement practice in 2021 @ConnectWise #cybersecurity #endpoint #MSP… twitter.com/i/web/status/1…

January 28, 2021
ChannelFutures

International effort takes down #Emotet botnet, but @Netenrich, @digitalshadows, @Vectra_AI say it will be back.… twitter.com/i/web/status/1…

January 28, 2021
ChannelFutures

.@Microsoft @Azure’s Tyler Bryson, new U.S. channel head, talks priorities at @GetNerdio’s #NerdioCon… twitter.com/i/web/status/1…

January 27, 2021
ChannelFutures

.@CryptoStopper hires @GetChanneled to build partner program, act as virtual channel chief. #ransomware… twitter.com/i/web/status/1…

January 27, 2021
ChannelFutures

MSSPs, check for this ‘novel’ social engineering threat from North Korea. #Google. dlvr.it/RrTS9J https://t.co/2mDcnNvkHz

January 27, 2021
ChannelFutures

.@keepersecurity report shows financial sector heavily targeted by #cybercriminals. dlvr.it/RrTBPz https://t.co/joTBNeb2MT

January 27, 2021
ChannelFutures

.@Trustwave unveils new global referral partner program. #cybersecurity dlvr.it/RrT9Td https://t.co/amXCw33UsF

January 27, 2021
ChannelFutures

Ecosystem security provider Cyberpion launches first #partnerprogram. dlvr.it/RrSnxK https://t.co/g7Po3jq8iw

January 27, 2021

MSSP Insider

Newsletters and Updates

Sign up for The Channel Report, Channel Futures Update, MSP 501 Newsletter and more.

Live Channel Events

Get the latest information on the next industry-leading Channel Partners event.

Channel Partners Online

Want more? Find more channel news and analysis on our sister site, Channel Partners.

Media Kit And Advertising

Want to reach our audience? Access our media kit

DISCOVER MORE FROM INFORMA TECH

  • Channel Partners Online
  • Channel Partners Events
  • MSP 501
  • MSSP Insider
  • IoT World Today
  • Webhostingtalk

WORKING WITH US

  • Contact
  • About us
  • Advertise
  • Newsletter

FOLLOW Channel Futures ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookie Policy
  • Terms
Copyright © 2021 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X