By exploiting zero-day vulnerabilities in Chrome and Safari, cybercriminals were able to serve over 1 billion malicious ads to users in less than a two month period.
The attackers targeted both iOS and macOS users by leveraging known zero-day vulnerabilities (which have since been patched) to inject exploit code which redirected vulnerable users to malicious sites according to the security firm Confiant.
The threat actor eGobbler exploited a zero-day vulnerability in Webkit, the browser engine used in Safari and Blink, the Webkit fork used in Chrome, to generate successful redirects.
Read Complete Article: https://www.techradar.com/news/surge-of-malicious-ads-target-ios-and-macos-users