Malvertising Dangers and Defences: Strengthen Your Online Security
Understanding Malvertising: A Growing Cyber Threat
Malware comes in many forms, one of the most prevalent being malvertising. These malicious advertisements can appear anywhere, from social media platforms to websites and even in Google search results.
What makes malvertising especially dangerous today? Two key factors:
- Hackers are using AI to make these ads more convincing.
- The threat is rapidly increasing. Malwarebytes reports that malvertising surged by 42% month-over-month in late 2023.
Understanding this threat is crucial. Knowledge is your best defense against malicious cybercriminals. Below, we explain malvertising and provide practical tips to help you identify and avoid it.
What Is Malvertising?
Malvertising refers to the use of online advertisements to carry out malicious activities. A common example occurred during the release of the PlayStation 5, which was in high demand and difficult to find. Hackers took advantage by creating fake ads on Google that appeared legitimate. These ads directed users to fraudulent websites designed to steal credentials and credit card information.
While platforms like Google work to police their ads, malicious ads often run for hours or even days before being detected. These fake ads blend in with legitimate sponsored ads, making them difficult to spot.
Malvertising isn’t limited to search engines. It can appear on well-known websites that have been compromised or within your social media feed.
How to Protect Yourself from Malicious Ads
Review URLs carefully
Check the URLs of ads or links before clicking. Malvertising often uses websites with slight misspellings or other subtle differences—Scrutinise URLs for anything that looks suspicious.
Visit websites directly
Avoid clicking on ads altogether. If a brand claims to have a big sale or special offer, go directly to their official website to verify. This practice is effective for malvertising and all types of phishing attempts.
Use a DNS filter
DNS filters provide an additional layer of protection. These tools monitor and block access to harmful websites. If you accidentally click on a malicious ad, the DNS filter will redirect you to a warning page, keeping your device and data safe.
Malvertising is a growing threat, but with vigilance and the right tools, you can significantly reduce your risk. Stay informed and take proactive measures to protect yourself and your data.
Avoiding Common Malvertising Pitfalls
Malvertising schemes are designed to trick you into sharing sensitive information or infecting your devices with malware. Here are some essential precautions to take when dealing with online ads:
Don’t Log In After Clicking an Ad
Many malvertising scams redirect you to fake websites that closely mimic legitimate ones. These copycat sites are set up to steal your login credentials, which can be sold for significant sums, especially for accounts like banking or streaming services.
- If you click an ad, never enter your login details on the website.
- Instead, open a new browser tab and navigate directly to the brand’s official site.
Avoid Calling Numbers in Ads
Phishing isn’t limited to online activities. Some malicious ads include fake customer service numbers that trick users into calling.
- Scammers may pose as representatives to extract personal information, often targeting seniors.
- If you see a number in an ad, avoid calling it. If you accidentally connect with a scammer, do not share any personal details—hang up.
Remember, these schemes are crafted to exploit fear and trust. Stay cautious and sceptical.
Never Download Files from Ads
Ads offering “free downloads,” such as software or tools, are common bait in malvertising campaigns. These links often deliver malware instead of the promised file.
- Avoid downloading anything directly from an online ad.
- If you want a product, visit the official website to verify its legitimacy.
Warn Others About Suspicious Ads
If you encounter a suspicious ad, share your findings with others. Raising awareness among colleagues, friends, and family can help them avoid falling for similar scams.
- When in doubt, search online for information about the ad. Many scams are already flagged and documented.
- Building a cyber-aware community benefits everyone by increasing vigilance and sharing timely scam alerts.
Boost Your Online Security
Are your devices up to date with the latest security patches? Do you have reliable anti-malware software and DNS filtering in place? If you’re unsure, it’s time to strengthen your defences.
Contact us today to schedule a consultation. Our cybersecurity experts can recommend affordable and practical solutions to protect you online.
About the author
Yener is the founder and Managing Director of Intuitive IT. Prior to running his own business Yener worked for a number of corporate organisations where he gained invaluable experience and skills, as well as an understanding of how IT can complement and improve business outcomes.