Web Users Must Stay Extra Wary to Fend Off Stealthy 'Malvertising'
NEWS ANALYSIS: Computer users have to be more wary than ever to avoid malware infection via "malvertising" downloads, but there are ways to protect yourself.I was visiting a Website belonging to a well-known Macintosh publication reading details about the iPhone SE when a window appeared in the lower right corner of my screen. It was an alert saying that the Malwarebytes security software I use had detected an intrusion attempt, and that the malware was being quarantined. A few minutes later, it happened again. At that point, I recalled Robert Lemos' article on infected ad networks along with a newsletter I'd received the day before from Malwarebytes describing new levels of threats from malware appearing to be legitimate advertising. The malvertising now seems to be showing up on major Websites using well-known ad networks such as Google's DoubleClick. The problem, it seems, is worse than most people suspect. The reason that malvertising is being distributed by the top ad networks is because the malware writers are actually buying ads and then feeding the ad servers content that is infected with malware, but the latest tactics are even more sinister. Now the malware can simply infect your computer without any action on your part. No longer do you have to click on an infected link.
In fact, according to Jerome Segura, senior security researcher at Malwarebytes, the newest types of malvertising will run on your computer, deliver their payload of malware and you'll never realize they were there at all until the payload executes or your security software catches it.