A hacking group is targeting companies using the self-hosted ad serving platform Revive to inject and deliver malicious advertising to website visitors.
In an attack detailed today by security researcher Eliya Stein from Confiant Inc., the ad servers are being targeted by a group dubbed Tag Barnacle. Revive Adserver is a popular open-source ad serving platform for those who don’t wish to use hosted services from the likes of Google LLC.
Eliya Stein discovered 60 compromised Revive ad servers serving about 360 websites. That’s not a particularly large number, but one of the compromised ad servers was found to have served 1.25 million malicious ad impressions in a single day. Those using Revive are often small online advertising companies that may not be aware they have been breached.