- of
Know Who You're Working With
Publishers should research the domain names of ads' click-through URLs, as well as the domains for advertisers' and agencies' companies. If a domain was registered recently, the domain registrant's name and contact information is hidden or false it should send up red flags.
Secure Partners
Publishers should be aware that different ad networks and exchanges may have significantly different standards for malware detection, Google said, adding the company strongly advises against using networks or exchanges without strong anti-malware security measures in place.
Perform Comprehensive Q&A on Ad Content
Sites such as
Wepawet and
Adopstools should be used to scan Adobe Flash Player, JavaScript and PDF files before they are allowed to run. Test each core creative and all files the creative's code invokes, and use SWF-to-XML converter to detect references made from each SWF file. If the converter fails with an error, treat the creative with suspicion, Google advised.
Proper Planning
Having a strong response plan in place is important to ensure a quick reaction to a threat, Google said.
Fake Anti-Virus
Rogue anti-virus scams are a common threat on the Web. Such operations often pull in significant profits by tricking users into paying for software that does nothing, and malvertising often figures into such schemes. An example of this is the recent attack targeting visitors to NYTimes.com. To avoid this, Google suggests users research a company's reputation before downloading its software or visiting its site.
Follow Standard End-User Best Practices
This includes making sure your browser, operating system and anti-virus are fully patched. Google also urged users to exhibit caution when they are prompted to download an e-mail attachment, follow an instant message link or install a plug-in or unfamiliar piece of software.
IT Security & Network Security News & Reviews News & Reviews 
iPad 3: 10 Design Ideas Apple Should Borrow
10 Hot Tech Products Sure to Fire Up the Market in 2012
iOS, Android App Economy Fuel 500K U.S. Jobs: TechNet
Microsoft's Windows 8 Minimized Ribbon, Sensors Among New Feature[..]
NoSQL Database: 5 Ways to Make It Enterprise-Ready
Facebook IPO: 10 Facts You Didn't Know Before the SEC Filing
See All Slideshows
Malicious online ads have plagued the Web for some time, but a series of recent events—from an attack targeting NYTimes.com in September to a number of civil lawsuits filed by Microsoft—have turned the spotlight on the problem once again.
Among the groups fighting all this is Google. Earlier this year, the company redesigned the site Anti-malvertising.com to add more educational content to supplement a custom search engine designed to help ad network customers conduct quick background checks. As part of Cyber Security Awareness Month, Google has issued a number of tips to help users and Web publishers alike.