Malicious advertising attacks (malvertising) have been plaguing mainstream sites and their visitors a lot these past few years. While some are easy to spot and get rid of, others tend to be much more sophisticated and hard to shine light on. This past Saturday, we discovered a malicious advert that was displayed on huffingtonpost.com and that was used to deliver the Cryptowall ransomware via a Flash exploit.
As of last night, Malwarebytes started detecting a very popular and very vulnerable application as a PUP. This application, known as Dell System Detect, is pre-installed with many Dell systems. According to research done by Tom Forbes, older versions of Dell System Detect are vulnerable to a serious remote code execution attack.