According to Sophos researchers, several OpenX ad servers have been compromised and are redirecting users to Web sites that push malware.

"Experts found that when the OpenX ad content is requested by the browser, an iframe is also loaded, executing a malicious JavaScript identified as Troj/JSRedir-EF," writes Softpedia's Eduard Kovacs.

"The iframe added by the script loads content from a traffic directing server (TDS), controlled by a group called BlackAdvertsPro, which appears to be specializing in compromising websites in order to direct traffic to their own TDS," Kovacs writes. "This traffic can be worth a lot of money if sold to crooks who run exploit sites."


Go to "Compromised OpenX Ad Servers Lead Users to Malware" to read the details.

For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.