October 6, 2016 By Fran Howarth 2 min read

Advertising enables free content. Without online advertising, many publishers would be forced to charge users through subscriptions or other methods of payment to view their content. On the flip side, it’s a way for companies to promote new services, products and discounts.

But advertising is also becoming increasingly attractive to cybercriminals as a vehicle for spreading viruses, spyware and ransomware. This has contributed to the rise of malvertising.

Malvertising 101

A portmanteau of “malicious advertising,” malvertising involves injecting malware into advertisements on legitimate websites or through online ad networks.

The first such exploits were observed less than 10 years ago and are now extremely widespread. According to The Register, incidents of malvertising increased by 260 percent in 2015, and the resulting damage is estimated at around $1 billion.

Malvertisements can take the form of normal ads, pop-ups or notifications to download or update fake software. Most malvertising campaigns are short-lived. In some cases, they start as benign ads and are generally placed on reputable websites. Cybercriminals inject viruses into the website’s code to turn legitimate ads into malicious ones.

After a mass infection is complete, attackers hide their tracks by quickly removing the virus from the code. In other cases, legitimate ads are targeted directly. Many major organizations have been attacked this way.

Prevention Techniques

While no method can guarantee protection against malvertising, users can take steps to reduce the likelihood of being infected. Basic security hygiene is key. This involves keeping all software up to date with the latest patches, including your operating system and web browser.

Anti-Exploit and Antivirus

Anti-exploit programs can shield devices from vulnerabilities aimed at operating systems and browsers. Some antivirus programs offer such capabilities as well. There are also separate programs that run alongside antivirus software to monitor browsers for malicious exploits. Some antivirus programs also offer safe browsing capabilities that alert users when a website is potentially harmful.

Ad Blockers

Ad blocking programs offer some defense against malvertising, and these options are becoming increasingly popular with users. Advertisers and publishers, however, have suffered backlash related to this software. According to The Wall Street Journal, the use of ad blockers cost the advertising industry $22 billion in 2015. Digiday, meanwhile, reported that some experts expect the cost to balloon to $35 billion by 2020. Websites are increasingly requiring users to disable ad blockers to access content.

Click-to-Play Plugins

Another way to combat malvertising pop-ups is to enable click-to-play plugins. This requires a user to actively click on a pop-up before it plays to reduce the chance of infection. Users should also disable unused plugins and ensure that all plugins in use are updated.

Malvertising is a nuisance that can affect anyone, from individuals to the largest enterprises. The best strategy is one of prevention through awareness. If something doesn’t look legitimate, don’t trust it.

More from Risk Management

How will the Merck settlement affect the insurance industry?

3 min read - A major shift in how cyber insurance works started with an attack on the pharmaceutical giant Merck. Or did it start somewhere else?In June 2017, the NotPetya incident hit some 40,000 Merck computers, destroying data and forcing a months-long recovery process. The attack affected thousands of multinational companies, including Mondelēz and Maersk. In total, the malware caused roughly $10 billion in damage.NotPetya malware exploited two Windows vulnerabilities: EternalBlue, a digital skeleton key leaked from the NSA, and Mimikatz, an exploit…

ICS CERT predictions for 2024: What you need to know

4 min read - As we work through the first quarter of 2024, various sectors are continuously adapting to increasingly complex cybersecurity threats. Sectors like healthcare, finance, energy and transportation are all regularly widening their digital infrastructure, resulting in larger attack surfaces and greater risk exposure.Kaspersky just released their ICS CERT Predictions for this year, outlining the key cybersecurity challenges industrial enterprises will face in the year ahead. The forecasts emphasize the persistent nature of ransomware threats, the increasing prevalence of cosmopolitical hacktivism, insights…

How I got started: Ransomware negotiator

4 min read - Specialized roles in cybersecurity are proliferating, which isn’t surprising given the evolving threat landscape and the devastating impact of ransomware on many businesses.Among these roles, ransomware negotiators are becoming more and more crucial. These negotiators operate on the front lines of cyber defense, engaging directly with cyber criminals to mitigate the impact of ransomware attacks on organizations.Ransomware negotiators possess a unique blend of technical expertise, psychological insight and negotiation skills that allow them to navigate the high-stakes environment of ransomware…

Topic updates

Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today