Much appreciated! I've done an exhaustive check on our end on top of the Netseer research and we're green across the board.

It's going to be interesting to see what comes of this. Externally this is a big deal. I'd say more than 3/4 of the Western web was probably impacted by this today.

Hah, I finally got the warning, but I got it on Amazon.com. This was huge.

Clarity · Feb 4, 2013

This appears to have been resolved. There should be no more false warnings for this one.

ScarletInMyVeins · Mar 20, 2013

Been having an issue for a few weeks. It doesn't happen every time I view the site but often enough to be annoying. Mainly happens on front page or main forum page. Getting redirected to

http://adtrack.king.com/modules/adT...k=market://details?id=com.king.candycrushsaga

This is on my android. I'm using dolphin browser.

Clarity · Mar 22, 2013

Couldn't find that, so I went through and turned off every single mobile campaign Burst has. If you still see that behavior after 4pm ET today (takes a couple hours for changes to work through their ad server), please let me know and I'll set more fires.

ScarletInMyVeins · Mar 26, 2013

It just happened again on the front page.

fanaticbuckeye · Mar 26, 2013

I get the same thing on my iPhone using Chrome. It then Redirects me to the AppStore to download Candy Crush Saga.

Clarity · Mar 26, 2013

I'll go looking again. Without knowing which ad placement it's coming from I'm flying blind. If it's happening on the front page, there's only the top banner and the skyscrapers, each of which also load on the forumhome (the forum listing) page. So I'll dig through those and see what I can find.

If it happens again and you see a corresponding ad, please let me know which position it's coming from. Leaderboard (the top horizontal banner), or (from top to bottom) the 1st, 2d, 3d, or 4th skyscraper.

What I do see is some annoying Sony floater at the bottom that shouldn't be there. Mobile ads are the wild west, so out of control and so much slips through. Drives me batshit crazy.

Piney · Mar 26, 2013

Clarity;2320769; said:
I'll go looking again. Without knowing which ad placement it's coming from I'm flying blind. If it's happening on the front page, there's only the top banner and the skyscrapers, each of which also load on the forumhome (the forum listing) page. So I'll dig through those and see what I can find.

If it happens again and you see a corresponding ad, please let me know which position it's coming from. Leaderboard (the top horizontal banner), or (from top to bottom) the 1st, 2d, 3d, or 4th skyscraper.

What I do see is some annoying Sony floater at the bottom that shouldn't be there. Mobile ads are the wild west, so out of control and so much slips through. Drives me batshit crazy.

It has happened to me also (not today since I haven't browsed BP on my cellphone today) both in the Dolphin and Chrome browser.

The problem is finding out which ad it is coming from as it automatically re-directs you without seeing where the ad came from, at least in my experience getting the redirect.

Clarity · Mar 26, 2013

Here are direct loads to the ad positions that load on the front page. I've been loading them on my iPhone (in Safari, haven't tried iOS Chrome yet) but haven't seen the redirect yet. If anyone who gets the redirect is able to reproduce it on one of these pages, that would be a big help.

Leaderboard
WideSky1
WideSky2
WideSky3
WideSky4

I'm still looking either way.

--edit--
I've also put in a domain block for king.com where I can. If at any point these just stop happening, please let me know.

Clarity · Mar 26, 2013

Hey, for those of you who get it -- do you play any games on Facebook?

I'm researching and Google seems to believe this isn't coming through ad servers directly, but it's a malicious cookie that hits certain mobile browsers.

http://productforums.google.com/forum/#!topic/chrome/EDJTbPaW5dg

--edit--
More evidence that this is picked up as bad javascript somewhere and then it sort of hijacks ads elsewhere. IF true that's good news in the sense that it's not coming through one of our ad partners, but bad news in the sense that this King company is really being particularly slimy with their tactics.

I'd be interested to know if those affected still get the redirect here after clearing their cookies in the mobile browser affected.

Putting in blocks for mobrewards.org, mobprizes.com, mobilewinner.org, mobilevisitor.org, rewardstoday.org, and mobgifts.org. Each of these seem to be related to the company responsible for what can only be described as a malicious effort across the web targeting mobile browsers.

Clarity · Mar 26, 2013

Okay, all those new blocks are in place. I'll be interested to hear if people still get the mobile redirect after, say, 6:30pm.

Right now everything seems to be pointing towards this being an ongoing net-wide 'attack' against mobile browsers. Originating in or about games on Facebook, or (more likely) mobile ad code in games on Facebook (and games that have mobile apps that are also on Facebook). Which is not to say FB is the culprit, it's (if this is all true, but there's a substantial amount of evidence to support this) malicious code inside those mobile ads somewhere. IF this is true, clearing the cookies in your mobile browser would seem to resolve the issue, at least until you're exposed to the bad code again. Not knowing exactly where that code is, obviously I can't speak to how to avoid it. People in phone browsers (tablets don't seem to be hit) everywhere are getting hit with it. I see angry threads on everywhere from IGN, to Mac forums, sports sites, Google, Apple, etc. As above, the good news there is it's so widespread that the external discussions provide another layer of insight into the problem, and hopefully how it can be properly addressed.

For the meantime, I've done what I can (for the moment) here. I've firebombed our mobile ads with our partners, I've put blanket domain blocks in place, and I'll keep looking into this so I can advise if someone comes up with a solution.

ScarletInMyVeins · Mar 26, 2013

I don't play games on Facebook but I play a downloaded freecell game that has ads in it. Could that be causing my issue?

Edit:

It just happened again on the front page after clearing my cookies and all other data from dolphin browser.

Clarity · Mar 26, 2013

ScarletInMyVeins;2320844; said:
I don't play games on Facebook but I play a downloaded freecell game that has ads in it. Could that be causing my issue?

Well, the code is likely in one or more mobile ads somewhere. I've turned off and/or blocked all the mobile ads I can, and that should clear the remote systems by 7p ET. So yes and no, anywhere with mobile ads can be a source. I'm trying to narrow it down to a specific ad network and then a specific campaign.

ScarletInMyVeins;2320844; said:
It just happened again on the front page after clearing my cookies and all other data from dolphin browser.

Hopefully the blocks I put in place will make a difference. Should take a couple hours for them to take root in the ad servers.

Are you able to replicate the pop in any of the linked (above) direct ad loads? That's everything external from the front page, each coming from a different source. You may need to clear cookies before trying if you have the bad code in your browser again (assuming the Google thread is correct about how it works).

Clarity · Mar 26, 2013

From a related discussion on another site:

"The ad tracking setting is found by following the Settings -> General -> About -> Advertising path. Under that setting, you'll see something called "Limit Ad Tracking." When you encounter it for the first time, the toggle is in the "off" position. This actually means that ad tracking is turned on. In other words, your behavior is being tracked if the Limit Ad Tracking feature is turned off. If you want to opt out of targeted advertising and stop advertisers from following your online moves, switch "Limit Ad Tracking" to the on position."

That's for iPhone users, and it's a bandaid rather than a fix. Still digging.

For Android users:
http://dottech.org/21999/android-ti...d-ads-by-flipping-a-switch-in-android-market/

Advertisements

Fungo Squiggly

Mortal enemy of all things Bucky

Clarity

Will Bryant

Clarity

Will Bryant

ScarletInMyVeins

Tanned Fat Looks Better

Clarity

Will Bryant

ScarletInMyVeins

Tanned Fat Looks Better

fanaticbuckeye

Rule number one, I'm number one.

Clarity

Will Bryant

Piney

Stay thirsty my friends

Clarity

Will Bryant

Clarity

Will Bryant

Clarity

Will Bryant

ScarletInMyVeins

Tanned Fat Looks Better

Clarity

Will Bryant

Clarity

Will Bryant