We can’t deny that many scammers are clever in how they choose their victims. They consistently go for those who are the most vulnerable, which is why we hear so many stories of older Americans who are not as skilled in the world of technology being scammed.
One way that these scammers have been tricking people lately is with malvertising campaigns executed through fake Google ads.
What is malvertising?
Malvertising is a form of fake online advertising that uses ads that look real to spread malware to people’s devices. Malvertisements can be placed on legitimate websites, and they can use a variety of tactics to trick you into clicking on them, such as promising free software downloads or falsely claiming that your device is infected with a virus.
When you search for something on a search engine like Google, for example, you will often notice that your search results will give you a few sponsored ads at the very top of your results. Here is an example of what this looks like.
With malvertising, you might perform a search and see sponsored ads pop up for you that look just like the ones above. However, these links are riddled with malware and will likely lead you to fake websites that will release viruses to your device or try to take your personal information.
What is this particular malvertising campaign doing?
According to Malwarebytes, the malvertising campaign that has been growing in popularity among scammers creates hundreds of fake websites via the web hosting platform Weebly. The scammers use Weebly to host fake content that looks real so that the ads they place on Google can be validated and approved.
Once the ads are approved this campaign can potentially be harmful in at least two ways.
- Clicking on an ad can potentially install malware onto your device
- Clicking on an ad can lead you to a fake website where you can be forced into a fullscreen page that you may not be able to exit (tip: you can actually exit this screen by clicking and pressing the escape key). On the screen is a phone number to call “For help”. That phone number leads to a scammer who will con you out of money and potentially your personal information.
And many of these malicious ads are being pushed onto older Americans.
How are these ads being posted without cybersecurity noticing?
This is where the cleverness of the scammer comes in. These criminals know their way around cybersecurity and are constantly coming up with new ways to slip through the cracks.
The main way they do this is by making their websites look as legitimate as possible. Only the intended target will see the malicious content that the site has, which therefore means that quality checkers will miss what the website is being used for and allow it to be revealed to a larger demographic.
This is possible because of a technique they use that is known as cloaking, which is a way of hiding malicious content from viewers who do not fall within the intended audience.
FOR MORE OF MY SECURITY ALERTS, SUBSCRIBE TO MY FREE CYBERGUY REPORT NEWSLETTER HERE
What can I do to protect myself?
Have good antivirus software on all your devices
Having antivirus software running on your devices will make sure you are stopped from clicking on any malicious links or from downloading any files that will release malware into your device and potentially have your private information stolen.
Special for CyberGuy Readers: My #1 pick is TotalAV, and you can get a limited-time deal for CyberGuy readers: $19 your first year (80% off) for the TotalAV Antivirus Pro package.
Find my review of Best Antivirus Protection here.
Related:
- Top browsers targeted by new malware to steal your sensitive data
- Troubling malware threat spreading on Facebook and Twitter
- AI-created malware sends shockwaves through cybersecurity
Copyright 2024 CyberGuy.com. All rights reserved. CyberGuy.com articles and content may contain affiliate links that earn a commission when purchases are made.