Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11DeceptionAds Warning: New Malicious Ad Type Exploits Legitimate Services to Display Fake CAPTCHAs
Malvertising comes in many shapes and forms, but some are more dangerous than others. DeceptionAds is a new form of malvertising, where scammers use legitimate advertising platforms and ensure that their malicious sites avoid as much censorship as possible, allowing their bad ads to get up to 1 million impressions per day.
DeceptionAds abuses legitimate channels to distribute PowerShell malware
According to Guard.io, DeceptionAds is a fake CAPTCHA page that asks users to copy and paste a command to activate PowerShell malware. This attack vector is nothing new; the attack was reported in a McAfee discovery last October.
DeceptionAds Warning: New Malicious Ad Type Exploits Legitimate Services to Display Fake CAPTCHAs Picture 1
What makes this particular case notable is how it spread. To lure people into these fake CAPTCHA sites, the cybercriminals set up a system where they sent fake ads through Monetag, a legitimate ad network. Monetag has moderation tools to prevent attacks like this, but the cybercriminals tied themselves to a second legitimate service called BeMob, which was designed to perform ad tracking.
Of course, the criminals weren't really interested in implementing ad tracking on their fake sites. Instead, they passed the malicious site's BeMob URL to Monetag. Since BeMob was a trusted source, Monetag accepted the link and didn't flag it during moderation. This allowed the cybercriminals to display their malicious ads 1 million times a day on over 3,000 websites.
Fortunately, Guard.io reported these cases, and both Monetag and BeMob have removed the offending ads and removed the bad actors behind them. However, this provides insight into how malvertisers leverage official, legitimate channels to spread their sites undetected.
Fortunately, avoiding this attack is the same as all other malicious ads. By knowing what to look for when spotting malicious ads, you can spot fake ads and avoid clicking on them in the first place.
Marvin FryYou should read it
- How do criminals use CAPTCHAs to spread malware?
- About PowerShell
- How to install PowerShell 7.0 in Windows 10/8/7
- What is PowerShell Basic commands in PowerShell
- Use PowerShell to download any file on Windows 10
- PowerShell command in Windows
- How to use PowerShell's default parameter to change the command behavior
- How to check PowerShell version in Windows 10
- Instructions on how to use PowerShell in Windows Server 2012
- What is Windows PowerShell? How to use Windows PowerShell
- What to do when Windows can't find PowerShell?
- PowerShell and everything you need to know about it
Maybe you are interested
Apple's 'shot on iPhone' ads don't reflect the truth
How to Create a Budget Spreadsheet in Google Sheets
Microsoft 365 Android PDF Viewer shows ads, even with subscription
How to Avoid Post-Tracking Targeted Ads After Shopping Online
How to display image alt text on Threads
Link to download YYLive MOD APK to unlock rooms and remove ads
Tech info
Why should you shut down your Windows laptop every day?- Fun ideas & activities to get students excited about school
- Instructions for inserting stickers into photos on iPhone
- How to Take a Screenshot on Android When the App Doesn't Allow It
- US users can now access ChatGPT via 1-800-CHATGPT
- FBI Warns iMessage Is Not a Strongly Encrypted Messaging App
Why should you shut down your Windows laptop every day?
Fun ideas & activities to get students excited about school
Instructions for inserting stickers into photos on iPhone
How to Take a Screenshot on Android When the App Doesn't Allow It
US users can now access ChatGPT via 1-800-CHATGPT
FBI Warns iMessage Is Not a Strongly Encrypted Messaging App