Beware these common ‘malvertising’ attacks

Think about the last online ad you clicked…

Did you just assume it was genuine?

If you said yes, you’re not alone – and this is exactly what scammers are counting on.

“Malvertising”, or malicious advertising, is where scammers use online ads to trick you into downloading malware (malicious software), sharing sensitive information like passwords, or even handing over money.

These attacks are becoming more sophisticated, and they’re a growing threat to businesses of all sizes. Worse yet, you don’t even need to click on these ads to become a victim; just loading the ad in an out of date browser can be enough to compromise your device.

The three most common malvertising techniques are known as scam malvertising, fake installer malvertising, and drive-by download malvertising. Here’s a little more about them:

  • Scam malvertising is where an ad claims that your computer is infected and urges you to call for support. Once you do, the scammers convince you to install software that gives them control over your system. Then they charge you to “fix” the fake issue.
  • Fake installer malvertising often uses ads that lead you to cloned websites of brands you trust. You download software, thinking it’s legit… but, instead, you’re downloading malware onto your device.
  • Drive-by download malvertising is where ads infect your computer without you even clicking on anything. This type of malvertising exploits outdated browsers and installs malicious files or extensions automatically.

Recognising these scams is the first step to keeping your business safe. If you see an ad claiming you’ve been hacked or urgently need to act, stop and think: How would this company even know anything about your computer?

Also, make sure you double-check links before you click. If the link isn’t sending you to a legitimate domain, steer clear. And most importantly, make sure you’re running the latest version of your browser, as updates patch vulnerabilities that malvertising often exploits.

Don’t forget to share this knowledge with your employees, too. They’re your first line of defence – and training them to spot suspicious ads can save your business from serious trouble.

Scammers want you to trust without thinking. But a healthy dose of scepticism can make all the difference. Next time you see an ad that feels wrong, trust your gut… and ask yourself if it’s safe before you click.

Want to train your team to protect your business from malvertising and other online scams? We can help, get in touch.

Recent posts

How to create secure passwords

How to create secure passwords

Weak passwords are one of the biggest security risks to your business. Why? Because cyber criminals are getting smarter than ever before. If they manage to crack just one password, they could gain access to your sensitive business data, financial information, or even...

read more
Businesses are taking too long to fix vulnerabilities

Businesses are taking too long to fix vulnerabilities

Imagine you’re watching the news and see that a criminal is targeting houses in your area. Would you leave your front door unlocked tonight? I wouldn’t think so. Yet this is essentially what many businesses do when they put off fixing vulnerabilities in their systems....

read more
Employees are falling for 3x more phishing scams

Employees are falling for 3x more phishing scams

Have you ever stopped to wonder how many phishing scams your employees encounter each day? The answer might come as a nasty surprise. Last year, the number of employees clicking on phishing links TRIPLED – and businesses everywhere are paying the price. Before we dive...

read more