Ransomware scum add Joomla to their list

I too only use Firefox+NoScript (+AdBlock for extra defense), blocking iFrames IMO is the biggest defense in fact even though of course script blocking is also key, which is why I'm sad the way Mozilla is taking Firefox.

If NoScript was available for Chrome I'd be using that browser but sadly there's no sign that it will be and the copy-cats addons for Chrome simply don't do as good a job as NoScript. :(

What's the vulnerability?

There's been a couple of security patches for Joomla lately. Does anyone know if this attack is using one of those holes to get into systems that haven't been patched? Or is it a new vulnerability?

Or to put it more simply: Do all Joomla admins need to be worried, or just the ones who haven't kept up-to-date with security patches?

This can all be prevented easily

Advertisers just need to follow my rules, rules which were being followed once when the internet took became a life's necessity. If they worked once, they can work again.

(1) Absolutely no tracking, no exception. (2) Absolutely no ad that uses a plugin, such as Flash or Java, or Javascript, no exception. (3) Absolutely no pop-up or pop-under ads, no exception. (4) Absolutely no auto-play videos except when I click on a link to a clearly labeled video. (5) Absolutely no ads that attempt to determine my location; i.e. no "Shocking secret [city name] man discovers" type ads. (6) Absolutely no ads that block part or all of a webpage, no exception.

If those rules were being followed, malvertising would stop immediately. The web ad business model was successful once when they obeyed my rules, they can be successful again. My privacy and my security are more important than your money. I want you to make money, but not at the expensive of something far more valuable than money.

it's worth checking you've turned on the a bunch of headers that make the site less prone to these problems

try https://securityheaders.io/

on your site and fix it. I've been doing that.