Malvertising via Dynamic Search Ads Delivers Malware Bonanza
In an unusual case of malvertising, a compromised website unknowingly promoted a popular program for Python developers through Google Dynamic Search Ads. Victims who clicked on the ad were redirected to a hacked webpage where they unknowingly downloaded malware instead of the intended application. The compromised website had been injected with malware that advertised serial keys for various software programs. The automated ads created by Google Ads from the hacked page misled users, resulting in unintended malvertising. Those who downloaded the fake serial key ended up infecting their computers with multiple pieces of malware. This incident highlights the need for safe browsing practices and caution with sponsored content. The compromised website has been notified, and Malwarebytes has detected all the malware associated with this incident.