Yes, folks, supply chain risks through third parties is a thing...
And at a banking site to boot: https://www.bankinfosecurity.com/equifax-transunion-websites-served-up-adware-malware-a-10379
Well, not really banking, credit reporting services, like Equifax or Transunion, are using code for web reporting.
It's kinda malvertising, where the site has links that go outside, but I think it's include files, that go to a site on the fly, which is compromised, and serving up fake flash malware, which in this case is Adware.Eorezo.
There's also talk about third party providers in general https://www.pymnts.com/news/b2b-payments/2017/bitsight-financial-services-face-third-party-cybersecurity-risk/
Malwarebytes is quoted multiple times and has a good blog post https://blog.malwarebytes.com/threat-analysis/2017/10/equifax-transunion-websites-push-fake-flash-player/
AI and Voter Engagement
21 hours ago
No comments:
Post a Comment