The New York Times has warned readers to be wary of ads for antivirus software on its website.
The so-called rogue antivirus products that have been spotted on the website, often promoted by Eastern European criminal organisations, are either ineffective or actually end up infecting the computers of people who purchase them.
"Some NYTimes.com readers have seen a pop-up box warning them about a virus and directing them to a site that claims to offer antivirus software," the Times said in a 'Note to Readers' on its website.
"We believe this was generated by an unauthorised advertisement and are working to prevent the problem from recurring." The newspaper did not respond to a request for more information on the issue.
Because online advertisements are usually sold through networks, sites such as NYTimes.com often have to rely on other companies to make sure that the ads they carry are appropriate.
"It's a fake page for a non-existent antivirus app, which is actually malware," Davis wrote in his analysis of the issue.
In the past three months, rogue antivirus software has emerged as a major online problem, according to Paul Ferguson, a researcher with antivirus vendor Trend Micro. "It's pervasive," he said in an instant message interview. "Right now, they are going full-tilt."
Criminals use a variety of tricks to get people to shell out for the bogus products: They use search engine optimisation techniques to get search engines like Google to list websites that display the pop-up ads, or they'll flog them through social media sites like Twitter or Facebook . They even use malicious Trojan horse programs to pop up error messages in hopes that people will buy.
"It's a multimillion dollar business," Ferguson said.
See also: Is your PC botnet infested?