http://www.welivesecurity.com/2016/12/06/stegano-exploit-kit/

[QUOTE]
What does your discovery mean for internet users?

It means that there are advertising banners with "poisoned
pixels" leading to a new exploit kit, intended to enable the bad guys
to remotely install malware onto victims' computers. The victim doesn't
even need to click on the malicious ad content; all it takes is to visit a
website displaying it. If the victim's computer runs a vulnerable version
of Flash Player, the machine will be compromised via an exploited
vulnerability automatically.

[...]

Where are the poisoned pixels in this?

Well, the name "Stegano" refers to steganography[1], which is a
technique the bad guys used to hide parts of their malicious code in the
pixels of the advertisements' banners. Specifically, they hide it in the
parameters controlling the transparency of each pixel. This makes only
minor changes to the (color) tone of the picture, making the changes
effectively invisible to the naked eye and so unnoticed by the potential
victim.
[/QUOTE]

[1] http://www.virusradar.com/en/glossary/steganography

)\/(ark

Always Mount a Scratch Monkey
Do you manage your own servers? If you are not running an IDS/IPS yer doin'
it wrong...
... The pursuit of truth will set you free. Even if you never catch it.
---