Pay-Per-Click Ads on Google Search Lead to the Serving of Info-Stealers

  • Users wanting to obtain widespread software program like AnyDesk or Telegram might find yourself downloading malware.
  • Malicious actors are abusing Google Adwords to promote their malware-distribution websites and drop digitally signed info-stealers.
  • The executables come hidden inside ISO information and have a number of layers of obfuscation and anti-analysis methods.

There’s an increase in the quantity of infections by prevalent info-stealers that flow into the internet proper now. An clarification for this lies in the potential to abuse Google Adwords to promote the malware by way of pay-per-click (PPC) adverts on Google Search. Morphisec confirmed this after its researchers determined to analyze the phenomenon and determine the technical specifics that assist push info-stealers like ‘Redline,’ ‘Taurus,’ ‘Tesla,’ and ‘Amadey’ on the market.

According to the Morphisec report, the Google Search outcomes which have been linked with malware concern phrases like AnyDesk, Dropbox, and Telegram, whereas the set up packages are “weirdly” wrapped as ISO picture information.

Most of the PPC adverts that promote the info-stealers this manner seem on the first web page of the search outcomes, which makes this much more tough for web customers. Moreover, the actor likes to set Adwords to goal IP ranges in the United States and different prolific international locations, so non-targeted IPs are redirected to respectable pages to obtain the actual software program, not malware.

Recommended For You

Leave a Reply