News - Confiant

eGobbler used Chrome bug to deliver 500 Million+ ads to iOS users

Written by Security Affairs | Apr 17, 2019 4:00:00 AM

The group tracked as eGobbler is exploiting a security flaw in the Google Chrome browser to target millions of iOS users.

Experts at security firm Confiant tracked the campaign since April 6, they estimate that more than 500 million malicious ads have been already served to iOS users.

The users are being redirected to scam “You’ve won a gift card” landing pages hosted on the “.world” TLD top-level domain previously associated with eGobbler.

Google is already working on a fix to address the bug in its browser.

According to Confiant, the flaw ties the way the Chrome browser for iOS handles pop-ups. Chrome implements ad sandboxing features to limit the interaction of the code used to insert ads into a Web page with other components.

In a normal condition, the ad sandboxing features should prevent a pop-up from being launched unless the user explicitly enables it, but the bug in Chrome allows attackers to bypass the protection mechanism.

“The fact that this exploit is able to bypass that need for user interaction should be impossible according to the same-origin policy as it pertains to cross-origin iframes,” reads the analysis published by Confiant.

Read Complete Article: https://securityaffairs.co/wordpress/83997/breaking-news/egobbler-ios-malvertising.html