How many years has this been going on? Google can't (won't) seem to do anything about it. New LOBSHOT malware gives hackers hidden VNC access to Windows devices. That is "Virtual Network Computing" for those of you not up on all the security acronyms.
Earlier this year, BleepingComputer and numerous cybersecurity researchers reported a dramatic increase in threat actors utilizing Google ads to distribute malware in search results.
These advertising campaigns impersonated websites for 7-ZIP, VLC, OBS, Notepad++, CCleaner, TradingView, Rufus, and many more applications.
However, these sites pushed malware instead of distributing legitimate applications, including Gozi, RedLine, Vidar, Cobalt Strike, SectoRAT, and the Royal Ransomware.
The new threat, LOBSHOT, is a remote access trojan.
Once installed the malware will do things like turn off Windows Defender, invade Chrome cryptocurrency wallet extensions, and more.
This type of access could lead to ransomware attacks, data extortion, and other attacks.
All distributed via Google Ads. I wonder if they get paid for clicks.
No comments:
Post a Comment
Comment Moderation is in place. Your comment will be visible as soon as I can get to it. Unless it is SPAM, and then it will never see the light of day.
Be Nice. Personal Attacks WILL be deleted. And I reserve the right to delete stuff that annoys me.