September 10

Assessment:  Redirect campaign driving users to domains such as walmart-u<dot>xyz and amazonpresent<dot>info, has been detected and blocked.  Similar to earlier patterns, this campaign leverages malicious code hosted on Google CDNs.

Affected Platforms:  For this particular campaign, the most common delivery path has been via Sovrn > Pubmatic > Bidswitch > Lazarus.Mobi (DSP)

Hijacked creatives

`` `` ``