Third party content strikes again: "

Over on Sophos’s blog, there is a post about a ‘household name’ web site delivering infected third-party content through a marketing relationship. This is consistent with what we have seen lately in our web site work, where infected ads pop up on an ad network, causing an otherwise ‘clean’ site to appear infected.

I disagree with the author’s assertion that the responsibility lies entirely with the hacker and the marketing company, though he does temper that by saying:

Remember, adding third party content can be a risky business. You have to make sure that their security policies match yours, otherwise you lose your reputation.

Beyond just your reputation, you endanger the privacy and security of your customers/visitors if you allow infected third party content onto your site. So, be sure to very carefully learn about the security practices of advertisers (or other third party content providers) before allowing them to serve content on your site.

"

(Read Original Article - Via StopBadware Blog.)