What are the threats you face when surfing the Internet? Find out how they work and how to avoid them.
Malvertising, or malicious advertising, is a cyber attack technique that injects malicious software (malware) into advertisements. They are difficult to detect. Malvertising is beneficial to cybercriminals because they manage to spread the malware to a large number of legitimate websites, which embed malicious advertisements without their knowledge, infecting visitors' computers.
This is a typical case. The ad offers anti-spam software, but clicking "click here" takes you to a site that could inject malicious code onto your computer.
This is another frequent case: winning a prize. Obviously, if you click on "click here" you will be directed to a site that could inject malicious code on your computer.
In this case, the message informs you that the computer is infected with a suspected virus and offers a virus scan to eliminate it. Again, clicking on the button leads to a site that could inject malicious code onto your computer.
Unfortunately not! Many malvertising do not require any clicks. They activate and download malware automatically and covertly.
Because malvertising exploits a software vulnerability in your browser or operating system to download and activate malicious code on your computer.
An exploit is software developed to identify a specific vulnerability in an application, browser or operating system, exploiting it to carry out a criminal operation against the user. Typically, the software that operates the exploit is placed on compromised websites. The user who visits them suffers the exploit. Hackers use phishing emails to invite their victims to visit such websites.
An Exploit Kit is a collection of software that anyone can use to carry out web-based cyber attacks. These are the tools used to carry out Penetretion Test.
The Exploit Kits are therefore used to search for the vulnerabilities of a system with the aim of securing it. But they are also the tools used by criminals to carry out web-based cyber attacks.
It's possible. Consider that software (such as operating systems, plug-ins, media players, PDF readers, etc.) are made up of millions of lines of code. It is therefore possible that they contain errors that can give rise to vulnerabilities. These vulnerabilities are unknown to the manufacturer until someone discovers them.
Social media is the place where you can most easily find popups and posts that catch your curiosity: scandalous, curious or incredible news ... They just want to invite you to click. Hold on. It is another way to take you to compromised sites that will infect your computer.
They may hide malicious software.
Avoid sites that may contain exploits.
Links in phisihing emails often lead to clone sites of the original sites.
Verify that the address in the browser begins with https: //. It means that the site protects the integrity and confidentiality of the data communicated.
Instead, open your browser and type in the address yourself.
Do not click on us, they could lead you to compromised sites.
Last, but not least, use common sense!!!
