Malware experts at CSE Cybsec uncovered a massive malvertising campaign dubbed EvilTraffic leveraging tens of thousands compromised websites. Crooks exploited some CMS vulnerabilities to upload and execute arbitrary PHP pages used to generate revenues via advertising. Once a website has been compromised, attackers will upload a zip file containing all the malicious files. Malware is distributed via various methods, such as download via unreliable site torrents and torrents. The main purpose of the malware used in the campaign is to trigger a redirecting chain through at least two servers.”]
Source: https://securityaffairs.co/wordpress/68059/cyber-crime/eviltraffic-malvertising-campaign.html