As reported by The Register, Google’s search ads have fallen prey to a disturbing trend. Malicious actors have been promoting a fake Google Authenticator app that installs the DeerStealer information-stealing malware. This incident is not an isolated one, as Google has been struggling to contain malvertising campaigns on its platform.
The severity of this issue cannot be overstated. Users who fall victim to these malicious ads risk having their sensitive information, such as credentials and cookies, stolen by the DeerStealer malware. As reported by PCMag, the convincing appearance of these ads, displaying a legitimate “https://www.google.com” URL and marked as “verified by Google,” makes them all the more dangerous.
Google’s inability to prevent these malicious ads from appearing on its platform raises serious concerns about the effectiveness of its ad review process. It calls into question the company’s ability to protect its users from the ever-present threat of malvertising.
The potential impact on users is significant. With the DeerStealer malware capable of stealing information stored in web browsers, users must remain vigilant when browsing the web and downloading software. The prevalence of malware in the Android ecosystem, with over 90 Android apps recently flagged as containing malware, further emphasizes the need for caution.
As Google works to address this issue, users are advised to exercise extreme care when clicking on promoted results on Google Search. Using ad blockers and bookmarking official software project URLs can help mitigate the risk of falling victim to these malicious ads.
Malvertising on Google’s Platform
Google’s ad platform has been a prime target for malvertising campaigns. The company has been fighting an uphill battle against malicious actors who exploit its system to spread malware.
In 2022 alone, Google removed a staggering 3.4 billion ads and suspended 12.7 million advertiser accounts. These numbers underscore the massive scale of the malvertising problem on Google’s platform.
Despite Google’s efforts to combat these malicious campaigns, bad actors continue to find ways to evade detection. They exploit weaknesses in the ad review process to serve malware-laden ads to unsuspecting users.
The recent incident involving fake Google Authenticator ads is just one example of how malvertising persists on Google’s platform. It raises serious concerns about the effectiveness of the company’s current measures to protect users from these threats.
Weaknesses in Google’s Ad Verification Process
The fake Authenticator ads managed to slip through the cracks of Google’s ad review process. This process relies on a combination of human-conducted reviews and automated checks.
Despite these measures, the malicious ads displayed a legitimate “https://www.google.com” URL. They were even marked as “verified by Google,” adding to their convincing appearance [1][2].
It remains unclear how Google verifies its ad information before ads go live. This includes the advertiser’s real name, location, and product authenticity.
The fact that these malicious ads were able to bypass Google’s safeguards raises serious concerns. It calls into question the effectiveness of the company’s ad verification process.
Google’s Response to Malvertising Campaigns
Google claims to have taken swift action in response to the recent incident involving fake Google Authenticator ads. The company says it removed the malicious ads and suspended the associated advertiser account.
But is this enough? Google says it’s increasing the scale of its automated systems and human reviewers to better detect and remove these malicious campaigns. However, the persistence of malvertising on Google’s platform raises doubts about the effectiveness of these measures.
It’s not the first time Google has struggled with this issue. The company removed a staggering 3.4 billion ads and suspended 12.7 million advertiser accounts last year alone. Despite these efforts, malicious actors continue to find ways to evade detection and exploit the platform.
Google needs to do more. The company must strengthen its ad verification process and close the loopholes that allow these malicious ads to slip through. It’s not enough to react after the fact – Google must proactively prevent these incidents from occurring in the first place.
Image credit: Wikimedia Commons
