Malicious Attacks from AK ads!

markuus3889

Diatom, what's that?
This is the fourth or so Intrusion attack blocked by my AV software in the last month. This occurred today after updates to AK which I thought were going to resolve the issue but haven't. This only occurs on AK. I had never heard of www.clubmonaco.ca and had to look it up. Apparently it is a clothing retailer. I've never been there before.

upload_2018-4-9_12-34-22.jpeg

upload_2018-4-9_12-34-55.jpeg


Probably no big deal, right?

Mark K.
 
I am using what appears to be the same AV software - 'Norton Security' (?) - nothing seen here.

Using Chrome Browser, & Windows 7 64bit. (+'Ghostery' tracking blocker, and since yesterday 'ABP' Adblocker add-in for Chrome. :))

Looks like your AV is dealing with it - just keep it updated. ;)
 
Last edited:
I don't have any problems with AK at all. I'm using Opera with AdBlock Plus and Windows Defender.
 
With the smart phone these are a PITA, it locks the phone and its hard to get away from. I'm still getting them, the worst so far is claiming to be Amazon and I've won something. The only way I've found to get rid if them is repeatedly hitting the back button rapidly.
 
If you haven't, take a look at this thread:

http://audiokarma.org/forums/index.php?threads/porn-sites-hacking-ak-wtf.809967/

Lots of good info here on exactly how ads work and where the content comes from. Takes a few pages to get to the good stuff I think. Ads are fairly customized so not everyone sees the same ads, for one thing. And AK does not have any control over the content - it's like renting out a billboard that someone changes on the fly for every driver on the road.
 
I had a keystroke logger invasion on my work pc on Friday. No more AK on the office pc. My IA guys were down in my office fast...
 
If you haven't, take a look at this thread:

http://audiokarma.org/forums/index.php?threads/porn-sites-hacking-ak-wtf.809967/

Lots of good info here on exactly how ads work and where the content comes from

Your link appears to be Subscriber view only. So I don't know whats there. I will reiterate I had never heard of the company before and I haven't shopped for clothing online in a couple of years.


Ads are fairly customized so not everyone sees the same ads, for one thing.

Lucky me, I got a bad one.


AK does not have any control over the content - it's like renting out a billboard that someone changes on the fly for every driver on the road.

Is it the implication here that AK can't do anything about this and if so I'm not sure why there is apparently a thread to post problems with ads if there is seemingly no recourse? See link below.
http://audiokarma.org/forums/index.php?threads/report-problems-with-ads-here.816408/.


Maybe @Advally is still around to assist.

I didn't see that thread until after I started this one. I did post the link to this thread in that one.


I had a keystroke logger invasion on my work pc on Friday. No more AK on the office pc. My IA guys were down in my office fast...

Did your people tell you to stay away from this site or are you staying away from it for some other reason on your work PC now?


I have no other intrusion attempts in my Norton history going back months. This is the only site with this issue. I pay for Norton for a reason and I am not going to lose any sleep over this. I just thought it might be good to mention the issue.


Mark K.
 
Your link appears to be Subscriber view only. So I don't know whats there. I will reiterate I had never heard of the company before and I haven't shopped for clothing online in a couple of years.

Oops, sorry. I don't think there HAS to be a reason for a particular ad - so the fact you haven't shopped for clothes is not necessarily related. It could be completely random.
 
This is the fourth or so Intrusion attack blocked by my AV software in the last month. This occurred today after updates to AK which I thought were going to resolve the issue but haven't. This only occurs on AK. I had never heard of www.clubmonaco.ca and had to look it up. Apparently it is a clothing retailer. I've never been there before.

Probably no big deal, right?

Mark K.

Mark would you PM me with the links in your pictures. They show up fuzzy for me. I would like to see what they are and do some forensics on them.

FYI: the site software upgrade was just the 1st step in eliminating where these are coming from. The work continues.
 
Your link appears to be Subscriber view only. So I don't know whats there. I will reiterate I had never heard of the company before and I haven't shopped for clothing online in a couple of years.




Lucky me, I got a bad one.




Is it the implication here that AK can't do anything about this and if so I'm not sure why there is apparently a thread to post problems with ads if there is seemingly no recourse? See link below.
http://audiokarma.org/forums/index.php?threads/report-problems-with-ads-here.816408/.




I didn't see that thread until after I started this one. I did post the link to this thread in that one.




Did your people tell you to stay away from this site or are you staying away from it for some other reason on your work PC now?


I have no other intrusion attempts in my Norton history going back months. This is the only site with this issue. I pay for Norton for a reason and I am not going to lose any sleep over this. I just thought it might be good to mention the issue.


Mark K.

He said it was because of an advertisement on AK. I did not click on any ads. I don't pretend to understand Cyber Security. All I know is what he told me. He blocked my access to AK at work. He said something like it was a command and control type keystroke logger that was calling out to a foreign country that is forbidden in my line of work. The last thing that happened before he walked into my office is this: I was reading one of the "survey" type threads. When I clicked to "like" a post, there was a dialog box that appeared saying "are you sure you want to do that?" , so I backed out of it. Then he confiscated my computer. You smart IT guys will know more about this than I.

Cheers,
David

Edit: I was using Google Chrome if that helps
 
He said it was because of an advertisement on AK. I did not click on any ads. I don't pretend to understand Cyber Security. All I know is what he told me. He blocked my access to AK at work. He said something like it was a command and control type keystroke logger that was calling out to a foreign country that is forbidden in my line of work. The last thing that happened before he walked into my office is this: I was reading one of the "survey" type threads. When I clicked to "like" a post, there was a dialog box that appeared saying "are you sure you want to do that?" , so I backed out of it. Then he confiscated my computer. You smart IT guys will know more about this than I.

Cheers,
David

Edit: I was using Google Chrome if that helps
You are being made a scapegoat for some other issue within your network.

From a smart IT "Girl"

Frannie
 
He said it was because of an advertisement on AK. I did not click on any ads. I don't pretend to understand Cyber Security. All I know is what he told me. He blocked my access to AK at work. He said something like it was a command and control type keystroke logger that was calling out to a foreign country that is forbidden in my line of work. The last thing that happened before he walked into my office is this: I was reading one of the "survey" type threads. When I clicked to "like" a post, there was a dialog box that appeared saying "are you sure you want to do that?" , so I backed out of it. Then he confiscated my computer. You smart IT guys will know more about this than I.

Cheers,
David

Edit: I was using Google Chrome if that helps


This is the same exact thing that happened to me on my work computer. Now the IT guys are working on a key logger issue. I had the same box that said are you sure you want to do that.
 
This is the same exact thing that happened to me on my work computer. Now the IT guys are working on a key logger issue. I had the same box that said are you sure you want to do that.
Again. AK is not installing keylogger Trojan's on peoples PC's

And honestly it takes significant , time consuming , expensive , highly skilled forensic analysis to even know how said "Trojan" was installed.

Trojans don't leave calling cards when they are installed. They do it silently otherwise what is the point ??

And most IT staffs only treat symptoms usually by blaming some easy thing because most IT staffs are not able to perform forensic studies due to cost restraints or just not caring.

So what am I saying. Stop it with the arm chair analysis. AK is NOT INSTALLING TROJANS OR MALWARE.

If it is well then I will eat crow. With ketchup.

Frannie
 
I get hijacks from stuff purported to be from Amazon, and Macafee blocks when navigating AK. I use Verizon security.

So, is there a good anti-malware app/ routine to deal with whatever it is?
 
I know well enough to NOT allow the IT staff at my workplace anywhere near my computer unless I'm informed of their plans for it. Too often these so-called professionals attempt to perform an update or a download and I wind up having major issues with my computer afterwards. The funny thing is that I usually am the one who "fixes" the problem!

I'm not saying all IT staff are inept, as there are three staffers at my job in whom I have complete trust in. I just wanted to agree with those here who stated AK was the cause for the key logger program, that is a bogus claim.
 
Back
Top Bottom