Malvertising via Dynamic Search Ads delivers malware bonanza (Pycharm)Posted by righttoprivacy in Security
QUOTE: "Most, if not all malvertising incidents result from a threat actor either injecting code within an existing ad, or intentionally creating one. Today, we look at a different scenario where, as strange as that may sound, malvertising was entirely accidental.
The reason this happened was due to the combination of two separate factors: a compromised website and Google Dynamic Search Ads.
Unbeknownst to the site owner, one of their ads was automatically created to promote a popular program for Python developers, and visible to people doing a Google search for it. Victims who clicked on the ad were taken to a hacked webpage with a link to download the application, which turned out to install over a dozen different pieces of malware instead."
Great breakdown by Malwarebytes on this instance of "Malvertising" - malware delivered using advertising.