It seems to be a random occurrence, I was able to trigger a pull of the infected page with the full request records:

https://tools.pingdom.com/#!/dWEfQI/http://www.equifax.com/f...

Interestingly, I ran into a similar issue with Yahoo earlier this week serving almost identical advertisements so this may be more widespread.