Mobile App Ads
#16
#22
#23
I understand that if you were getting thousands of reports in about ads like the users that have been posting here and in the "My phone has a virus?" thread, there would be a site-wide issue to go after. I still believe something is amuck with the advertiser's servers causing either a redirect to occur or a compromised JavaScript to be injected every X number of hits.
#24
But there are multiple advertising networks in use here and they're sometimes swapped around kinda frequently; to my knowledge, there is no way for anybody at IB to know which server on which ad network you hit at any particular time, but...
If this is readily repeatable by you, @IB Jose might have a way of helping but you will need to work with him directly... he's been pinged via this thread, hopefully he will chime in and maybe you & he can work together on this.
He's obviously not in the office today but AFAIK he'll be in this coming week (although it being the holidays, that's not cast in stone).
#25
Given the small amount of affected users and sheer quantity of servers used by the advertisers that IB uses, like you said it may be near impossible to figure out where the original injection is occurring (FWIW the ipojob URL looks to be dead now).
I did receive another of the redirects (both occurred while loading the homepage, not sure if you all use specific networks for specific areas of the site) and grabbed the specific URL loaded before the redirect occurred. I plan to wipe my old Nexus, go to the URL, and see if the injection occurs then. If so, I will try and trace the origin IP of the URL, hopefully allowing a closer look at where these scripts are coming from.
I do fear that even if we are able to locate the specific server that is doing the injections, it may be futile. JavaScript injections are gaining popularity fast in the ad (and malware) world it seems.
Also, ctubutis, after reading back through my posts I noticed some sounded as if I was trying to insinuate that you and the IB team were the ones causing the issue, and I wanted to apologize if they came across that way to you as well. I tend to forget that not everybody is nice and has each other's best interests in mind (like many advertising networks, all they see are the figures at the end of the month) and I let it get under my skin.
I did receive another of the redirects (both occurred while loading the homepage, not sure if you all use specific networks for specific areas of the site) and grabbed the specific URL loaded before the redirect occurred. I plan to wipe my old Nexus, go to the URL, and see if the injection occurs then. If so, I will try and trace the origin IP of the URL, hopefully allowing a closer look at where these scripts are coming from.
I do fear that even if we are able to locate the specific server that is doing the injections, it may be futile. JavaScript injections are gaining popularity fast in the ad (and malware) world it seems.
Also, ctubutis, after reading back through my posts I noticed some sounded as if I was trying to insinuate that you and the IB team were the ones causing the issue, and I wanted to apologize if they came across that way to you as well. I tend to forget that not everybody is nice and has each other's best interests in mind (like many advertising networks, all they see are the figures at the end of the month) and I let it get under my skin.