by Karl Denninger
Market-Ticker.org
It’s time to start holding ad networks liable for these sort of attacks.
Mainstream websites, including those published by The New York Times, the BBC, MSN, and AOL, are falling victim to a new rash of malicious ads that attempt to surreptitiously install crypto ransomware and other malware on the computers of unsuspecting visitors, security firms warned.
No, not the web sites. By and large they’re victims; they insert connections to these ad networks expecting and in fact are being promised the serving of advertising to their readers, not malicious code. If anything those sites IMHO have a claim against the ad networks!
It’s quite clear that a big part of the problem also lies with the publishers of software that put forward bug-ridden crap such as Flash and Silverlight, but at its core trying to hold them liable is sort of like arguing that a woman who is raped “deserved it” because she had on a short dress.