During the last few months, some abused Google Ads distributed different types of malware. Although this might not be the first time, it is for sure not the last one.
We will let you know how this was possible and how to protect yourself. Read on to learn the safety measures you should take.
Using ads to trick users into downloading malware is not a new method for hackers. They use it all the time.
Usually, they interfere with the ad delivery systems, in order to place their misleading ads on different websites. These hide links to malicious pages or directly to downloads that hide malware.
Still, as Google is a giant and benefits from very strong security measures, it might be difficult to understand the situation.
But here it is how this was possible. According to Elastic Security Labs, the research community discovered an important spike in malvertising attacks, since the beginning of the year.
The result of the attacks was that users downloaded an unknown hidden virtual network computing (hVNC) malware. This steals banking details by grabbing the forms, capturing the screen, or injecting legitimate websites with fake forms.
Thus, attackers gain access to the users’ PCs.
Also, at the same time, villains started a Google ads campaign, promoting illegitimate software.
To trick users easily, attackers promoted products from well-known security companies. They built fake landing pages, which mimicked very well the original websites.
Still, the call-to-action button was leading to an MSI installer. A click on the button determined the execution of malware. The program attacked Chrome’s, Edge’s, and Firefox’s extensions, allowing hackers to steal money or cryptocurrency assets.
Now, that you know how this worked, let’s see how to stay safe online.
In order to prevent being infected, it is important to keep a good cyber hygiene, all the time. For this, you need to:
As a Spotify Free user, you might feel like you want to block Spotify ads. This could be because they…
As it is one of the most popular digital music, podcast, and video services, a hacked Spotify account may be…
You may, or may not have heard about cracking. Either way, you should be aware of this threat, and learn…
Victim fraud shame is a very dangerous thing that may happen to those who become online victims. Some of them…
We assume that everybody wants to stay safe online. For this, some simple, still very important rules should be followed.…
Have you ever thought about how you could report Cybercrime? Maybe you or one of your friends became the victim…