Anyone stiil using yahoo.com after verizon tookover?
user310
Enthusiast - Level 1

Seem like some disgruntled employees at yahoo have broken some stuff at yahoo.com after they were bought out. Now yahoo pretty much just fowards to hxxps://voluumtrk.horizon-trading.com/ and tries to install malware. Just click on any news article and try reading it and your browser will be hijacked.

0 Likes
14 Replies
smith6612
Community Leader
Community Leader

It's probably a bad advertisement. That happens all the time on various websites, not necessarily Yahoo. Stuff like this is the reason why I run an Adblocker, and is something I wish the ad industry would get around to fixing, if they want to continue showing ads to me.

It wouldn't hurt though to give your computer a scan with MalwareBytes, and ensure your HOSTS file and extensions are clear of anything malicious.

user310
Enthusiast - Level 1

Well then verizon needs to fix their ad filtering as this malware only exist on yahoo.com not on any other sites such as google ads. I'm fed up with the yahoo malware and have reduced my browser time spent on yahoo.  They have great news content but too much malware.

0 Likes
smith6612
Community Leader
Community Leader

I'm still siding on the fact that your PC has something going on with it. Yahoo and Verizon are both security concious companies. Besides the fact that malware ads do occasionally slip by, and yes I've seen them, those ads typically don't last too long at all before they are discovered and pulled down.

0 Likes
jonjones1
Legend

@Smith6612 wrote:

I'm still siding on the fact that your PC has something going on with it. Yahoo and Verizon are both security concious companies. Besides the fact that malware ads do occasionally slip by, and yes I've seen them, those ads typically don't last too long at all before they are discovered and pulled down.


You are kidding right? I know you were joking. Yahoo and Verizon have had and still have loads of security breaches. Google them. But you made me laugh first thing on this August 1st. ๐Ÿ˜€

user310
Enthusiast - Level 1

@jonjones wrote:

You are kidding right? I know you were joking. Yahoo and Verizon have had and still have loads of security breaches. Google them. But you made me laugh first thing on this August 1st. ๐Ÿ˜€

I agree. I think the problem is on yahoo.com it has been hijacking my browser each time I leave the browser open on their page. It just hijacks it to hxxps://voluumtrk.horizon-trading.com and it has been for serval months. Definitely disgruntled employee not doing their job.

0 Likes
CRobGauth
Community Leader
Community Leader

I had no issue when I accessed the site.

And I beleive my wife does frequently.

Have you tried another browser and/or another computer to see if you have the same issue?

0 Likes
user310
Enthusiast - Level 1

@CRobGauth wrote:

I had no issue when I accessed the site.

And I beleive my wife does frequently.

Have you tried another browser and/or another computer to see if you have the same issue?


I m using firefox on a mac, and today is even worst it has infected yahoo mail. I can't even access mail, it just sends me to malware page after a couple of second once logged in. So time to abondon yahoo and maybe verizon too given the lax security.

0 Likes
smith6612
Community Leader
Community Leader

I wish I were joking. Companies, especially large multinational companies, need to be security concious or risk tarnishing their brand, and losing the most important aspect of their company - trust. They also need to keep the risk of lawsuits down to a minimum, in our sue-happy society. Large companies with large userbases are also amongst the most targeted. The problems which lead to security breaches usually lead from overworked staff, or poor roadmapping (meaning bad priorities or timelines which are far too tight to be effective). Overworked staff is a common scenario within large Silicon Valley companies and causes the next issue, along with opens increased risk for social engineering. Poor Roadmapping is more prominent the larger a company gets, and has to flex to maintain legacy and modern systems.

The weakest aspect with any company is the human element, and with the Yahoo, Verizon, and other compromises, the problem boils down to the human element making a critical mistake which to someone who has worked in InfoSec, would've raised a red flag long before the breach occurred. For example, a human making an error in an AWS zone while staging customer data to a test environment, which led to the recent Verizon data leak. Or Yahoo not having two factor authentication until about 2014 IIRC (yet they still beat so many companies to the punch somehow). I can't speak on behalf of Yahoo, Verizon, or any other major company who has experienced a compromise, but there are plenty of non-journalistic case studies out there of what I'm talking about.

In the OP's case, we should be receiving more reports of malicious links across Yahoo's site if they were truly compromised. It is highly unlikely that Yahoo is serving just ONE person malicious links. If it's spread to Yahoo Mail as well, but yet the forums continue to not see further reports, it is highly unlikely that the problem is with Yahoo. Myself and others use Yahoo on a daily basis and should have seen this by now. There should be more reports if there are compromises. OP needs to check their machine, and if they can't find an issue, nuke it and start from a clean environment. If the problem is still occurring after that, they need to investigate their home network, consider reflashing the firmware on their router and factory resetting it since those things are infectable (although that is rare).

0 Likes
jonjones1
Legend

Ha ha I was referring to your statement of: "Yahoo and Verizon are both security conscious companies."

They are notorious for breaches. Security leaks, weak privacy rules, and with the Yahoo and AOL debacle (which had even more) when you replied as you did I presumed you were making a joke.

0 Likes
user310
Enthusiast - Level 1

@Smith6612 wrote:

In the OP's case, we should be receiving more reports of malicious links across Yahoo's site if they were truly compromised. It is highly unlikely that Yahoo is serving just ONE person malicious links. If it's spread to Yahoo Mail as well, but yet the forums continue to not see further reports, it is highly unlikely that the problem is with Yahoo. Myself and others use Yahoo on a daily basis and should have seen this by now. There should be more reports if there are compromises. OP needs to check their machine, and if they can't find an issue, nuke it and start from a clean environment. If the problem is still occurring after that, they need to investigate their home network, consider reflashing the firmware on their router and factory resetting it since those things are infectable (although that is rare).


I am using firefox 50.0 on osx10.9.5 and I believed its a targeted hack. I think if you tested on firefox you would see the malware hack on yahoo.com.  It is a security hole in yahoo's ads network that they allow malware to be placed. I have never had this happen on any other website.

0 Likes
CRobGauth
Community Leader
Community Leader

I and my wife use Firefox on yahoo (albeit not on Mac) all the time.

Have yet to see an issue.

0 Likes
smith6612
Community Leader
Community Leader

You're using both an outdated version of the Firefox browser, and an outdated and insecure version of macOS with more than one set of nasty vulnerabilities - including some low level firmware vulnerabilities Apple patched and included in newer versions of the OS.

Please install macOS Sierra (10.12.6) from the App Store, and then upgrade your version of Firefox to the latest, which is v54.0.1 as of this post.

Here's Firefox running on a Windows system which isn't exhibiting the problem.

https://youtu.be/moA-m_TsCkw

If the problem is due to bad advertising on Yahoo, please let them know. Use the Contact link they provide here: https://help.yahoo.com/kb/account . If you're able to catch the ad, there's a small "AdChoices" button which should appear at the corner of the ad. Mouse over this and you'll be able to click an option to report abuse / a problem with the ad.

Please update your Mac's OS, and your copy of Firefox and report back. Also run your Mac through a copy of MalwareBytes, just to be completely sure that this isn't a problem with the machine. https://www.malwarebytes.com/mac/

jonjones1
Legend

Amazing that originally the spam amounts in most of my throw away accounts received no spam mail. Now the spam catcher piled loads of it in the spam folder. I don't use yahoo or AOL for any news. So it does not affect me. The other reply you received is spot on. I use mailwarebytes on all my machines.

0 Likes
CRobGauth
Community Leader
Community Leader

I just tried and had no issues.

As Smith said, sounds like your PC may have been compromised.

0 Likes