|
What is Malvertising?
Malvertising (malicious advertising) is one of the newest ways that
hackers
are using to attempt to steal personal information and to cause havoc with
computer users.
This type of malicious online advertising is typically performed
by masking malicious computer code with seemingly harmless online
advertisements. The advertisements may lead to harmful or deceptive
content or may directly infect a victim's computer with malicious
software (malware) that can damage data, steal personal information
or even bring the user's computer under the control of a remote
operator.
Big Companies Affected by Malvertising
In September of 2009, Microsoft filed five civil lawsuits against
alleged perpetrators of malvertising crimes, in which
malicious
computer code is masked with seemingly harmless online
advertisements. The advertisements may lead to harmful or deceptive
content or may directly infect a victim’s computer with malicious
software (malware) that can damage data, steal personal information
or even bring the users’ computer under the control of a remote
operator.
|
Key Terms To
Understanding Malvertising:
Related Articles
on Webopedia:
|
One of the more common ruses is to redirect the
viewer of the advertisement to a site that warns the user of spyware
or malware on his or her computer and offers to scan it for free.
Typically, clicking on the "scan my computer" or similar instruction
actually places the malware on the computer.
Such was the
case with a malvertisement that a fraudster somehow placed on the
New York Times Web site in mid-September. According to published
reports, the malvertisement initially posed as Vonage, the Voice
over Internet Protocol company, and appeared to be legitimate. At
some time after being accepted by the newspaper’s Web site, part of
the software code switched the display from Vonage to the malicious
software. The malvertisement took over the screens of some visitors
to the site; showed what appeared to be a computer scan and told
viewers they needed to buy software – which was bogus – to correct
the problem.
The attacks Microsoft complained about and that
hit the New York Times aren’t entirely new, but are still in their
infancy. According to U.K.-based Deloitte LLP, in 2008, one piece of
malvertising reached 2 percent of all U.S. Internet users. These
false advertisements are typically placed on trusted, reputable,
well-trafficked sites, Deloitte added.
Microsoft recommends
taking the following precautions to protect against the threat of
malvertising:
- Make sure you’re using legitimate and up-to-date anti-virus,
firewall and anti-malware/spyware tools.
- Be extra cautious about offers to secure or scan your
computer with security software or programs you don’t recognize.
|
DID YOU KNOW...
In September 2009, visitors to the The New York Times Web
site encountered malicious advertising. On the site, the ad
appeared as a pop-up box containing a security warning, advising
users that their machines were infected and directing them to a
Web site purporting to offer antivirus software, but that
actually contained a Trojan. [Source] |
Based in Colorado, Rob Douglas is an identity theft expert and has
been fighting against fraud and cyber crime for more than a decade. He
is the editor of www.IdentityTheft.info and a speaker at identity theft conferences
across the USA.
By Rob Douglas, Writer, www.IdentityTheft.info
Last updated:
October 16, 2009
Webopedia's 'Did You Know... Defend Yourself Against Identity Theft'
Identity theft is a crime whereby criminals
impersonate individuals, usually for financial gain. In today's society,
you often need to reveal personal bits of information about yourself,
such as social security numbers, a signature, name, address, phone
numbers, and even banking and credit card information.
Identity Theft Experts -
www.IdentityTheft.info
Includes identity theft articles, research and videos related to
identity theft protection.
FOCUS
09: Anatomy of a Scareware Scam
McAfee peels back the skin of an infamous scareware
company, exposing all the intricate inner workings from publicly
available data.
Malware Ads Hit New York Times
Media company's advertising staff approved bogus
Vonage ad that distributed malware.
Webopedia's 'Did You Know... 10 Tips for Creating Secure Passwords"
With so many passwords to remember, it can be difficult to remember
them, and people may think it is easier to simply use the same password
on different sites, or to use passwords that are easy to remember such
their date-of-birth or a child's name. Unfortunately, these types of
passwords can easily be hacked.
Webopedia's 'Did You Know...All About Phishing'
It is becoming increasingly common to tune in to
the news or load your favorite news Web site and read about yet another
Internet e-mail scam. An e-mail scam is a fraudulent e-mail that appears
to be from a legitimate Internet address with a justifiable request .
usually to verify your personal information or account details.
Twishing: Beware of the Latest ID Scam
Every time a new communication method becomes
popular, fraudsters look for a new way to commit identity theft. One of
the latest popular scams is "twishing."
Investigative Research Engine
This custom search engine was designed to help
ad network customers conduct quick background checks. It checks a
variety of independent, third party sites that track possible attempts
to distribute malware through advertising. |
