Quick Links
Fortunately, I’ve spotted tons of malvertisements over the years, and this is how I spot them every time.
What Is Malvertising?
The main goal of malvertisements is to infect your PC with a virus and steal your personal information. There are two ways that a malvertisement can achieve this:
How Do Malvertisements Appear?
Malvertisements have a long and storied history, and plenty of examples illustrate how they work.
Malicious SYS01 InfoStealer Ads Flooding Facebook
As proof that the largest websites aren’t “too big” to get malvertisements, there was a flood ofSYS01 InfoStealer ads attacking Facebook users. This wave promised users free access to popular services and software like Netflix and Photoshop.
Of course, these were just tricks to get people to click on the ads and download the SYS01 InfoStealer, which stole the victim’s Facebook accounts and used them to spread more malvertising.
Google Sponsored Links Showing Malicious Content
Cybercriminals Boosting Malvertising Using Paid Social Media Posts
Some social media websites allow people to “boost” the visibility of their posts by paying a sum. Cybercriminals can use these to boost their malvertisements and hijack people’s accounts, only to use those accounts to post and boost more malvertisements.
Trend Microreported a case where cybercriminals performed this trick with Facebook posts. They stole accounts using fraudulent customer support messages and used those to boost posts advertising a fake AI photo editor. Once people download and run the fake app, it gives the bad agent remote access to their computer.
How I Stay Safe From Malvertisements
Malvertisements sound scary on paper. However, they have several weaknesses that make it easier to spot them than the real deal.
Be Extremely Cautious Around “Too Good to Be True” Ads
You have to remember that malvertisers want as many people to click on their bad ads as possible. And because they’re not actually selling a proper product, they can get away with making ludicrous claims or deals because they don’t have to back it up.
As we saw with the SYS01 InfoStealer, the scammers advertised free Netflix and Photoshop access. Claims like that should reek of malvertisements the moment you see them. If an ad seems “too good to be true,” it probably is.
Look for Strange Wording or Grammar
Malvertisements are created quickly and unprofessionally. As such, if you see an ad that “sounds weird” but claims it’s from an official source, there’s a good chance it’s a malvertisement.
Look for “Unprofessional” Graphic Design
Cross-Reference Deals With the Real Company
Does a deal look good, but you’re unsure if it’s a malvertisement? To double-check if it’s the real deal, open a new tab and visit the company’s official website or social media.
If the advert claims to be from a trusted company, whatever it advertises should be on its website or posted on its social media. If the advert was from a company you haven’t heard of, you can check forred flags for a bad websiteand see if it fits the bill.
Be Careful What You Click On
It’s tempting to click on things to get your work done faster quickly, but attempt to take the time to think about where you click. Remember the Google malvertisement trick where scammers create adverts that look like legitimate search results? You can dodge that one by not clicking on any results marked as an ad. Instead, scroll down and click on the legitimate website’s search result.
Use a Secure Browser
So far, we’ve only covered ways to dodge post-click malvertisements. However, what about the pre-click malvertisements that fire the moment they’re loaded? Fortunately, if you pick a good browser, you’ll have a good first line of defense against these.
We’veranked the most secure browsers available, so give them a look if you want to stay safe online. And if you opt for Brave, you’re able to grab thebest security extensions for Brave browsertoo.
