An online banner ad that ran on MySpace over the last week is reported to have served spyware to over a million visitors using an unpatched version of Windows.
The ad, served by a website called DeckOutYourDeck.com, silently downloaded a Trojan horse to computers that had not been updated with Microsoft’s recent WMF patch. The software installed (part of the PurityScan/ClickSpring family of adware) would bombard the user with pop up ads and track their web usage.
Apparently, the same ad was spotted trying to serve up spyware on Webshots.com as well.
If you think your computer may have been affected, make sure your version of Windows is up to date, run a virus / adware scan, and consider switching from IE to a more modern browser like Firefox – which would have prevented the software from automatically installing.
Posted by Sean
