cybersecurity

3370 readers

30 users here now

An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!

Community Rules

Be kind
Limit promotional activities
Non-cybersecurity posts should be redirected to other communities within infosec.pub.

Enjoy!

founded 2 years ago

MODERATORS

[email protected]

Google Advertising Out to Lunch? Simple Pivots Catch an Ongoing Malvertising Campaign Hiding in Plain Sight (www.silentpush.com)

submitted 4 days ago by [email protected] to c/[email protected]

1 comments fedilink hide all child comments

Key Findings

Silent Push Threat Analysts have caught a threat actor’s ongoing series of malvertising campaigns blatantly abusing Google Search ads to target graphic design professionals.

We documented at least 10 malvertising campaigns hosted exclusively on two IP addresses: 185.11.61[.]243 and 185.147.124[.]110.

Together with our research partners, we found that the sites from the two IP addresses were being launched in Google Search advertising campaigns, and all of them led to malicious downloads.

you are viewing a single comment's thread
view the rest of the comments

[–] cAUzapNEAGLb 3 points 4 days ago

Wow, somebody is hunting mechanical engineers - hopefully none doing significant work get duped.

I'd be curious if the malicious downloads are basic viruses, or are something specialized to exfiltrate cad drawings, or something even more complex to subtly alter designs and cause harm