BleepingComputer tweeted on Twitter today at 12:44 AM stating about the Google Ads to be abused by hackers for spreading malware in legit software.
The Google Ads platform helps advertisers in promoting sites on Google Search by displaying them prominently in the list of results as adverts, frequently above the project’s own website.
Malware developers are increasingly exploiting the Google Ads network more illegally to transmit malware to unknown consumers who are looking for well-known websites.
When consumers click the download button on the trojanized versions of the software, the threat spread them and replicates the official websites of the projects.
Raccoon Stealer variations, a tailored Vidar Stealer, and the IcedID malware loader are a few examples of malware. Threat actors must use a method in that phase to get beyond Google’s automatic checks because if Google determines that the site is malicious and bans it.
BleepingComputer recently led to the exposure of a significant typosquatting campaign that employed over 200 domains to impersonate software projects.
The FBI has also issued a warning over this kind of advertising effort, advising internet users to exercise extreme caution.
