This article originally appeared in OODA Loop on April 22, 2019.
A malvertising campaign launched last week takes advantage of an unpatched software vulnerability in the iOS version of Google Chrome, putting about half a billion users at risk.
The threat actor behind the attack has been identified as the eGobbler gang, a cybercriminal group known for launching malvertising campaigns around holiday weekends. Security firm The Media Trust has warned that the Apple Safari browser is vulnerable to the campaign as well. Google has been informed about the attack and is working on a fix for the flaw.