http://www.welivesecurity.com/2016/12/06/stegano-exploit-kit/

[QUOTE]
What does your discovery mean for internet users?

It means that there are advertising banners with "poisoned pixels" leading to a
new exploit kit, intended to enable the bad guys to remotely install malware
onto victims' computers. The victim doesn't even need to click on the malicious
ad content; all it takes is to visit a website displaying it. If the victim's
computer runs a vulnerable version of Flash Player, the machine will be
compromised via an exploited vulnerability automatically.

[...]

Where are the poisoned pixels in this?

Well, the name "Stegano" refers to steganography[1], which is a technique the
bad guys used to hide parts of their malicious code in the pixels of the
advertisements' banners. Specifically, they hide it in the parameters
controlling the transparency of each pixel. This makes only minor changes to
the (color) tone of the picture, making the changes effectively invisible to
the naked eye and so unnoticed by the potential victim.
[/QUOTE]

[1] http://www.virusradar.com/en/glossary/steganography

)\/(ark

Always Mount a Scratch Monkey
Do you manage your own servers? If you are not running an IDS/IPS yer doin' it
wrong...
... The pursuit of truth will set you free. Even if you never catch it.
---