We’ve all seen a lot of Google Ads lately, and clicking on them usually takes you to a shopping website or a product page that Google is selling based on your web activities.
However, there is a new type of Google Ads out there that can be hazardous to users and their computers in a different way. According to a new Microsoft security alert, hackers are using fake websites to distribute malware and ransomware disguised as Google Ads. The most concerning aspect of the Royal (DEV-0569) ransomware is that it masquerades as installers and updates for legitimate apps such as Microsoft Teams, Zoom, Teamviewer, and others.
If that isn’t enough of a concern, Microsoft also mentions that if malware downloaders are launched in the system, they have the ability to disable security systems such as anti-virus apps, leaving the system vulnerable to further attacks. Additionally, the attacker now has the Machine permissions, giving them total access to the system and all data stored on it. In this security threat post, Microsoft provides additional information on the warning.