You are here

NCCIC Technical Alert – Major Online Ad Fraud Operation “3ve”

NCCIC Technical Alert – Major Online Ad Fraud Operation “3ve”

Created: Thursday, November 29, 2018 - 11:49
Categories:
Cybersecurity

The U.S. Department of Homeland Security’s National Cybersecurity and Communications Integration Center (NCCIC) has issued an joint Technical Alert with the FBI about a major online ad fraud operation, which they refer to as “3ve.” According to the Technical Alert, 3ve created fake versions of premium websites and visitors to those websites, funneling the advertising revenue to cyber criminals. 3ve obtained control over 1.7 million unique IPs by leveraging victim computers infected with Boaxxe/Miuref and Kovter malware, as well as Border Gateway Protocol-hijacked IP addresses. The Technical Alert contains indicators of compromise for Boaxxe/Miuref and Kovter malware and asks that victims submit reports to the FBI’s Internet Crime Complaint Center (IC3) with the hashtag 3ve (#3ve) in the body of the complaint. NCCIC/US-CERT.