Imagine this scenario: you’re seeking to download Google Authenticator, so you look it up on Google and click on the initial link that shows up.
Despite the fact that the link is labeled as sponsored and seems to be Google’s official site, things are not what they appear to be. Upon investigating the advertiser, which is possible on Google Search, it may seem like Google has verified their identity.
However, the truth is, if you had downloaded the linked app, you would have unknowingly installed a version of the Authenticator application infected with malware on your device. Despite having a valid signature, it was discovered to contain the DeerStealer information-stealing malware for Windows devices.
Instances of Malware Distribution Repeatedly Occur
Cybercriminals have consistently managed to evade the security checks of advertising platforms such as Google to insert ads loaded with malware on Google Search and other platforms. This has been observed multiple times, indicating a troubling pattern.
Recently, there were reports of malware spreading rapidly through Google Ads, and unfortunately, the situation has not improved since then.
These fraudulent ads often imitate genuine products, making it difficult for users to recognize their true nature.
In the earlier mentioned case, everything seemed legitimate initially:
- The correct Google domain was shown.
- Google had verified the advertiser.
- The app was signed.
When questioned by Bleeping Computer about these impersonations, Google admitted that malicious actors are evading detection by creating numerous accounts simultaneously, using text alterations, and cloaking methods to trick the review and automated systems.
Essentially, Google concedes that it cannot completely eradicate malicious ads. Despite removing “3.4 billion ads” and suspending “5.6 million advertiser accounts” in 2023, Google still has not devised a fail-safe strategy to identify all malevolent ads and advertisers on their platform.
Exercise Caution with Sponsored Links
It is crucial to be wary when dealing with any sponsored link or ad in search results, especially when it pertains to software downloads or financial transactions. That is the crucial lesson to learn from this.
Cybercriminals have repeatedly exploited search ads to gain users’ confidence. Simply scroll a bit further down to find the initial organic search results where you are likely to discover the official website for the desired product.
Image Sources: dee karen / Shutterstock