From Cybersecurity: Don't get fooled by 'malvertising'

Most websites feature some sort of advertising, such as ad banners on the side of the page or a video playing within the page itself. These ads can grab the user’s attention with outrageous claims, promotions or promises of free products. Some ads are based on past browsing history, making users even more likely to click on them.

What is malvertising?

Malicious advertising, known as “malvertising,” is when cybercriminals use ads to spread malware or use ads to trick users into providing sensitive information. When browsing a webpage, if the user clicks on a malicious ad, they may be taken to a phony login page or a fake retail website that will ask them for sensitive information. Some malvertising can even download malicious files onto systems.

How do cybercriminals gain access to ads?

Most websites do not choose who advertises on their page. Instead, they use ad networks that manage the advertisers, traffic and payments. Cybercriminals can take advantage of this system by fooling the ad networks into thinking that they are a legitimate advertiser. Once part of the ad network, cybercriminals use their ads to target anyone willing to click. Remember that just because the website is reputable and well-known does not mean that the ads on the website are safe to click as well.

Follow these tips to stay safe from harmful ads:

• Think before clicking! If something seems too good to be true, it probably is.
• Stay up-to-date with security patches on devices and browsers.

Use reputable ad blockers for browsers. Ad blockers help protect users from malvertising by preventing ads from being displayed.

Safeguarding digital experiences requires a proactive approach, but with these strategies in mind, users can browse with greater confidence and security.