Ad Networks Lay Path To Million-Strong Browser Botnet 105
jfruh writes "Every day, millions of computers run unvetted, sketchy code in the form of the JavaScript that ad networks send to publishers. Usually, that code just puts an advertiser's banner ad on a web page. But since ad networks and publishers almost never check the code for malicious properties, it can become an attack vector as well. A recent presentation at the Black Hat conference showed how ad networks could be used as unwitting middlemen to create huge, cheap botnets."
Re:No Script (Score:4, Interesting)
Re:Like hell they do (Score:3, Interesting)
If you care about security, you're running NoScript. And they do not run.
Why bother using the web, then? Most sites won't work with scripting disabled to any usable extent.
If you want to be safe from evil ad networks, just don't use the web. Problem solved.
But saying "just don't do it" in reference to things that the overwhelmingly vast majority of people need or want to do is not solving the problem, and is distracting to the need to actually solve the problem.