Ad Situation Guide
You are currently reading a thread in /qa/ - Question & Answer
We respect your right to privacy. You can choose not to allow some types of cookies. Your cookie preferences will apply across our website.
1. Information
>What is happening?
Our admin is testing new ad services on the homepage, related pages and archived threads. Some users reported redirects to malicious websites.
>Facts
- The ads in question are served from hxxp://ecpmrocks.com, which allows injecting its own Javascript and is able to redirect and hijack browsers. The script tries to read HTML5 localstorage cookies. The official ad host is Epom Market LTD.
- Traditional ads are served by hxxp://zkcdn.net, which only serves images.
>Unconfirmed rumors
- ECPM may be a legit ad hosting service. However, a simple Google search leads to questionable results, since hackers can inject and distribute malicious scripts.
- Board ads may be infected. The distributor is not injecting scripts, it should be harmless.
- Infected downloads are happening.
>Current Situation
Servers are sometimes changing; the frontpage may serve ads from hxxp://bnhtml.com. Said ads are still running scripts.
2. Prevention/Security
>Browsers/Extensions
- For enhanced security, it's generally recommended to use a browser that supports extensions. Examples include: Firefox, Chrome.
>Competent ad/script blocking extensions:
- uBlock Origin: https://github.com/gorhill/uBlock#installation
An ad blocker that uses a simple point-and-click firewall. You can decide what gets blocked or what goes through. https://github.com/gorhill/uBlock/wiki/Dynamic-filtering:-quick-guide
You may want to whitelist the following: @@||4chan.org @@||4cdn.org
- uMatrix: https://github.com/gorhill/uMatrix#umatrix
Matrix filter. Block scripts, frames and more. https://github.com/gorhill/uMatrix/wiki
- NoScript, ScriptSafe: Scriptblockers.
>Software
You should always use antivirus software.
If you are infected: Look for tools like MalwarebytesAntiMalware. Ask for help on malware support forums.
3. Actions
>Contact the administration
https://www.4chan.org/feedback
>Inform others
If you know any users that post on 4chan, please link them to this thread.
>>466891
KEEP ME POSTED
That reminds me malware adbro
What the fuck is zkcdn.net and how have I not noticed it for a whole year now? People first started seeing it last February in NoScript apparently.
I know it has "something" to do with an advertiser called Adzerk, but I don't know what its connection is with the whole malware thing.
Is there any?
>>466891
I think I'm just going to start blocking ads on 4chan.
Hiro clearly isnt looking out for us, so we dont need to bother looking out for him.
>>466950
>not blocking ads everywhere all the time
I can't stand that people still do this and prop up the failed 1990s clickthrough business model.
>>466891
Hi 8gag!
>>466958
For the longest time 4chan has had not terrible ads. It wasn't until the chinese menace came that advertisements started giving malware.
>Infected downloads are happening.
fug
>>467747
its just a rumor bro its just a rumor
>>467747
No. "Malware" ads are only present in the front page and in the archives. "Malware" because they aren't really malwares, they are just redirectors.
>not having your Adblock on all the time in the age of malvertising.
Shiggy diggy
Bump frum train.
![1458201432542[1].jpg](https://i.imgur.com/F8pvY2r.jpg "1458201432542[1].jpg")
Why hasn't anyone really made a big deal about this? It's a pretty big change, and having a video front and centre every time I visit an archive link seems far more intrusive than what I've come to expect
Was there a shitstorm I missed or something?
How do I get these ads to show up?