A Report Google Ads used for distribution malware

Recently a report was published by Beeping Computer to unveil how a thread group is distributed ransomware by Google ads.

Google ads are one of the trusted sources of ads, but bad actors use them to distribute malware. It is really a major concern for our privacy.

CronUp researcher Germ?n Fern?ndez unveils the DEV-0569 ransomware group. They are using Google Ads to distribute Gozi/Ursnif malware, RedLine stealer, and Royal ransomware.

How they are spreading Malware through Google Ads

For deployment, they use Add-MpPreference to configure exclusions in Windows Defender (extensions, paths, and processes), NSudo to launch binaries with full privileges, and GnuPG to encrypt the payloads,? Fern?ndez added, noting that as a result, the initial file triggers no hits in VirusTotal.

What are Google Adsense ads?

Google Ads is a platform run by Google to show ads to internet users. Most Brands use Google Ads to start their marketing campaign because Google is widely used.

When we surf websites, many ads pop up on Google Adsense. So mostly 90% of websites that we open use Google Adsense. So it is a major concern of our privacy.

How to stay safe from online malware or virus

Some steps must use when we are online, it is not about Ads malware.

If some ads offer us deals, do not pay directly. First, confirm whether is it a genuine website or a clone of the website.

Recently in India, the SOVA virus becomes highlighted after stealing bank balances from users.

SOVA VIRUS used clones of popular apps, and websites like Amazon, Walmart, or any popular apps. So confirm first, is it a Real website or app?

How to recognize Google Fake ads and Fake email ads

Check the opening Url of ads, url does not have the proper keyword.

Heading of the Ads of Amazon, Google, or something else and the URL of the Ads don’t match the real website.

Check the screenshot below, for how I recognize fake ads or emails from. I received an email Verifying your Identity to continue using coinbase

The above email looks real, when we click on the sender’s email address, see the result below screenshot.

The sender’s email address is fake, this is essay way that you can detect fake Google ads.

How to report Google fake ads

Step 1: Confirm that it’s a Google ad

The first step is to confirm that the ad you want to report is in fact a Google ad. Here are some of the different types of Google ads you might see.

  • Ads on Google Search: These are ads you see on Google Search results pages and other Google services such as Google Shopping.
  • Ads on non-Google websites and apps: You may see Google ads on non-Google websites and apps. You can identify them as Google ads if you see an AdChoices icon accompanied by an [X] icon that allows you to block the ad.
  • Ads on YouTube: These are ads you see at the bottom of YouTube videos, or on the right side of YouTube videos.

Step 2: Report the ad

Complete the  Report an ad form.

You?ll receive an email confirmation after you?ve submitted the form. Your report will be reviewed, and if appropriate, action will be taken on the ad.

Inderjeet

Inderjeet

Hi, I am Inderjeet, and welcome to my blog on cybersecurity. I started this blog to share my insights, tips, and experiences on various topics related to plants, shrubs, juniper and how to care indoor gardern.
Thank You

Leave a Reply