Abused Google Ads hid malware. Learn how to stay safe

During the last few months, some abused Google Ads distributed different types of malware. Although this might not be the first time, it is for sure not the last one.

We will let you know how this was possible and how to protect yourself. Read on to learn the safety measures you should take.

Abused Google Ads. How did this happen?

Using ads to trick users into downloading malware is not a new method for hackers. They use it all the time.

Usually, they interfere with the ad delivery systems, in order to place their misleading ads on different websites. These hide links to malicious pages or directly to downloads that hide malware.

Still, as Google is a giant and benefits from very strong security measures, it might be difficult to understand the situation.

But here it is how this was possible. According to Elastic Security Labs, the research community discovered an important spike in malvertising attacks, since the beginning of the year.

The result of the attacks was that users downloaded an unknown hidden virtual network computing (hVNC) malware. This steals banking details by grabbing the forms, capturing the screen, or injecting legitimate websites with fake forms.

Thus, attackers gain access to the users’ PCs.

Also, at the same time, villains started a Google ads campaign, promoting illegitimate software.

To trick users easily, attackers promoted products from well-known security companies. They built fake landing pages, which mimicked very well the original websites.

Still, the call-to-action button was leading to an MSI installer. A click on the button determined the execution of malware. The program attacked Chrome’s, Edge’s, and Firefox’s extensions, allowing hackers to steal money or cryptocurrency assets.

Now, that you know how this worked, let’s see how to stay safe online.

Tips to identify fake ads and stay safe

In order to prevent being infected, it is important to keep a good cyber hygiene, all the time. For this, you need to:

  1. Use antivirus and anti-malware software, and keep it up to date. You can find a short list, here.
  2. Use network firewalls.
  3. Set very strong passwords.
  4. Use multi-factor authentication. Thus, even if villains get your passwords, they would not be able to access your accounts.
  5. Use end-to-end encrypted apps and services.
  6. Regularly back up your important files.
  7. Reformat your hard drives before you give up your devices.
  8. Use a strong password for your routers
admin

Recent Posts

Block Spotify Ads: Is it Worth and Legal? Useful Tips

As a Spotify Free user, you might feel like you want to block Spotify ads. This could be because they…

12 months ago

Hacked Spotify Account? Tips to Regain Access

As it is one of the most popular digital music, podcast, and video services, a hacked Spotify account may be…

12 months ago

Learn about Cracking. Essential Security Tips to Keep It Away

You may, or may not have heard about cracking. Either way, you should be aware of this threat, and learn…

1 year ago

What Is Victim Fraud Shame? Useful Tips to Fight Against It

Victim fraud shame is a very dangerous thing that may happen to those who become online victims. Some of them…

1 year ago

Five Steps to Stay Safe Online. Essential Security Tips

We assume that everybody wants to stay safe online. For this, some simple, still very important rules should be followed.…

1 year ago

How to Report Cybercrime? Become a Security Hero

Have you ever thought about how you could report Cybercrime? Maybe you or one of your friends became the victim…

1 year ago