Backdoor Found In OpenX Ad Platform

Backdoor Found In OpenX Ad Platform 43

Posted by Soulskill on Tuesday August 06, 2013 @03:53PM from the eroding-what-little-trust-exists dept.

mask.of.sanity writes "A backdoor has existed for at least seven months in a platform sold by OpenX, the self-described global leader of digital advertising which counts the New York Post, Coca Cola, Bloomberg and EA among its customers. The backdoor was contained within the official OpenX package and recently removed. Security researchers say it meant those who downloaded the compromised software could have provided attackers full access to their web sites."

Backdoor Found In OpenX Ad Platform

This discussion has been archived. No new comments can be posted.

Search 43 Comments Log In/Create an Account

Comments Filter:

Re:interestingly, has always been open source (Score:3, Informative)

by pHalec ( 31694 ) writes: on Tuesday August 06, 2013 @05:01PM (#44490967) Homepage

OpenX has been through many twists and turns. I started using it with my employer when it was called phpAdsNew; it then became OpenAds; then OpenX.
It gradually went from a passably supported and FOSS-minded project to a hybrid model, with the FOSS part atrophying very quickly. It became clear to us that this was a liability and we stopped using it. We're now actively avoiding hybrid models like this.
Finding a 7-month-old backdoor vindicates our suspicions.

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Backdoor Found In OpenX Ad Platform 43

Backdoor Found In OpenX Ad Platform More Login

Backdoor Found In OpenX Ad Platform

Re:interestingly, has always been open source (Score:3, Informative)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot