Malware on Boing boing main site?

I just got that too on mobile (opera browser) - am on android, and certainly have Play Protect installed and enabled, seems pretty sketch - whatever it is.

I’m getting the asshile play ad, too. Not good enough. 0/10. Must try harder.

And theres nowhere to click to close the darn thing. I had to shut off scripting to make it go away.

I blocked it with uBlock Origin - I wondered if it would break the actual page with the article, but surprise surprise, it didn’t.

We’re trying to nuke that bad ad.

If you happen to get it yourself and would like to help, head over to https://freestar.com/bad-ads/ and report it, please!

These ads are often narrowly targeted thanks to the world of programmatic advertising, so tracking down the offending advertiser is often extremely difficult.

We appreciate that, but as we’ve said before, the most successful patreon website campaign ever would not be enough to fund Boing Boing. We hear you and are always looking for better options!

I actually tried, but their site gives an error when I try to submit!

20200111_1106371080×1839 312 KB

Well, in this case you went directly to the URL by link, so as long as you don’t think I’m a malicious bot, you are probably ok

The reason we use that form is it grabs all the info from your browser that an ad would, including cookies and the like, so this allows our advertising partner to track what ads you were actually shown and have a much better change of catching the bad one as a result.

That’s not what I’ve heard!

Got the “device not save” and the “install Adobe Flash” thingies yesterday using Brave in desktop mode on a Android tablet.

If you use an adblocker just add a rule for it - I used the element picker in uBlock Origin to block the ad, and after that it showed the article just fine. On my Android phone I use Blokada to block ads globally so I don’t see any of these. (Blokada is a godsend - sure it’s somewhat of a battery drain, but at least I don’t have to worry about ads.)

That said, this is pretty shitty. At this point I stopped recommending BoingBoing to people.

It’s been a day. Still no warning post on the main site that Boing Boing readers were exposed to multiple malware attacks, nor any warnings that BB visitors should run AV/Malware scans. BB doesn’t really have a good position to criticize others, such as Virgin Mobile or Equifax, for their malware problems if BB doesn’t publicly address its own on its main page.

Etc.

No healthy backends? Ouch, I just had a colonoscopy on Friday!

Guru “Mediation”? Someone needs to get hip to their obscure 30-year-old memes.

Update:

Well, fuck.

First kneejerk: How about assuming my account details are now owned by someone not BB staff and nuking my account?

The BBS and the main BB site are two different sites and the accounts here only work here. The BBS/Discourse site was fine.

Management says the Discourse servers were not affected. Only the main CMS, hence why the attack was only seen on the BB main page and not here on the BBS. But it’s hard to prove a negative, so who knows.

Never install anything that you didn’t go looking for yourself.

And even then, only sometimes.