Beware these common ‘malvertising’ attacks

Think about the last online ad you clicked…

Did you just assume it was genuine?

If you said yes, you’re not alone – and this is exactly what scammers are counting on.

“Malvertising”, or malicious advertising, is where scammers use online ads to trick you into downloading malware (malicious software), sharing sensitive information like passwords, or even handing over money.

These attacks are becoming more sophisticated, and they’re a growing threat to businesses of all sizes. Worse yet, you don’t even need to click on these ads to become a victim; just loading the ad in an out of date browser can be enough to compromise your device.

The three most common malvertising techniques are known as scam malvertising, fake installer malvertising, and drive-by download malvertising. Here’s a little more about them:

  • Scam malvertising is where an ad claims that your computer is infected and urges you to call for support. Once you do, the scammers convince you to install software that gives them control over your system. Then they charge you to “fix” the fake issue.
  • Fake installer malvertising often uses ads that lead you to cloned websites of brands you trust. You download software, thinking it’s legit… but, instead, you’re downloading malware onto your device.
  • Drive-by download malvertising is where ads infect your computer without you even clicking on anything. This type of malvertising exploits outdated browsers and installs malicious files or extensions automatically.

Recognising these scams is the first step to keeping your business safe. If you see an ad claiming you’ve been hacked or urgently need to act, stop and think: How would this company even know anything about your computer?

Also, make sure you double-check links before you click. If the link isn’t sending you to a legitimate domain, steer clear. And most importantly, make sure you’re running the latest version of your browser, as updates patch vulnerabilities that malvertising often exploits.

Don’t forget to share this knowledge with your employees, too. They’re your first line of defence – and training them to spot suspicious ads can save your business from serious trouble.

Scammers want you to trust without thinking. But a healthy dose of scepticism can make all the difference. Next time you see an ad that feels wrong, trust your gut… and ask yourself if it’s safe before you click.

Want to train your team to protect your business from malvertising and other online scams? We can help, get in touch.

Recent posts

Important: Protect your business from digital fraud

Important: Protect your business from digital fraud

Scams aren’t what they used to be.  They’re not always obvious, they’re not always clumsy, and they don’t always come with spelling mistakes or odd graphics.  Today’s digital fraud is faster, smarter, and often created with the help of AI. Which means it’s...

read more
Prepare your business for more refined cyberthreats

Prepare your business for more refined cyberthreats

Cyber criminals aren’t simply causing chaos anymore.  They’re getting smarter, more organised, and much better at finding weak spots in businesses of every size.  And while that sounds worrying, understanding what’s happening is the first step to protecting...

read more
Microsoft finally fixes these Teams issues

Microsoft finally fixes these Teams issues

If there’s one thing guaranteed to test your patience during a busy workday, it’s a messaging app that doesn’t behave the way you expect it to.  For a tool that millions of us rely on every day, Microsoft Teams does an impressive job of keeping businesses...

read more