There are many types of malware, one of the most common being “malvertising.” It appears everywhere, including social media sites, websites, and even Google searches.
Two things are making malvertising even more dangerous. One is that hackers use AI to make it very believable, and the other is that it’s on the rise. According to Malwarebytes, in the fall of 2023, malvertising increased by 42% (month over month).
It’s essential to inform yourself about this online threat. Knowledge is the power to protect yourself, especially from malicious cybercriminals. Below, we’ll help you understand malvertising and tips for identifying and avoiding it.
What Is “Malvertising?”
Malvertising is the use of online ads for malicious activities. One example is when the PlayStation 5 was first released, which was tough to get, creating the perfect environment for hackers. Several malicious ads cropped up on Google searches, making it look like someone was going to an official site, but instead, they went to copycat sites. Criminals design these sites to steal user credentials and credit card details.
Google attempts to police its ads, but hackers can often have their ads running for hours or days before they’re caught. These ads appear just as any other sponsored search ad on Google.
Google is not the only site where malvertising appears. It can appear on well-known sites that have been hacked and social media feeds.
Tips for Protecting Yourself from Malicious Online Ads
Review URLs Carefully
You might see a slight misspelling in an online ad’s URL. Just like phishing, malvertising often relies on copycat websites. Carefully review any links for things that look off.
Visit Websites Directly
A foolproof way to protect yourself is not to click any ads. Instead, go to the brand’s website directly – if they genuinely are having a “big sale,” you should see it there. This tip is helpful for all types of phishing; don’t click those links and go to the source directly.
Use a DNS Filter
A DNS filter protects you from mistaken clicks by redirecting your browser to a warning page if it detects danger. DNS filters look for warning signs and then block dangerous sites. This can keep you safe even if you accidentally click a malvertising link.
Do Not Log in After Clicking an Ad
Malvertising will often land you on a copycat site, and the login page may look identical to the real thing. One of the things phishers are trying to steal is login credentials, something they can get big money for logins to sites like Netflix, banks, and more.
If you click an ad, do not input your login credentials on the site, even if it looks legitimate. Instead, go to the brand’s site in a different browser tab.
Don’t Call Ad Phone Numbers
Phishing can also happen offline—some malicious ads include phone numbers to call. Unsuspecting victims may not realise that fake representatives are part of these scams, and seniors are often targeted by these malvertising scams. They call and reveal personal information to the person on the other end of the line.
Just say no to calling numbers in online ads. If you find yourself on a call, do not reveal any personal data and just hang up. Remember, this is an elaborate scam. These people prey on triggers like fear while working to gain your trust.
Don’t Download from Ads
“Get a free copy of MS Word” or “Get a Free PC Cleaner.” These are common malvertising scams. They try to entice you into clicking a download link, often for a popular program or freebie. The link actually injects your system with malware, where the hacker can then do further damage.
Never click to download anything from an online ad. If you see an advertisement with a direct download link, it’s often a scam.
Warn Other When You See Malvertising
If you see a suspicious ad, warn others to help keep your colleagues, friends, and family more secure. If you’re unsure, try a Google search on the ad. You’ll often run across scam alerts confirming your suspicion.
It’s essential to be smart and arm yourself with knowledge. You can then share this with others. Fostering this type of cyber-aware community helps everyone ensure better online security and get alerted of new scams.
Improve Your Online Security Today
Is your device up to date with security patches? Do you have a good anti-malware solution? Is DNS filtering installed to block dangerous websites?
If you’re not sure how to answer any of those questions, contact us. Our MSP cybersecurity experts are here to help you find affordable solutions to secure your online world.
Give us a call or email to schedule a chat about online security!