1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Malicious Google Ads campaign targets AWS users

    From TechnologyDaily@1337:1/100 to All on Fri Feb 10 13:30:03 2023
    Malicious Google Ads campaign targets AWS users

    Date:
    Fri, 10 Feb 2023 13:11:46 +0000

    Description:
    AWS users are being targeted for their login credentials via phishing sites.

    FULL STORY ======================================================================

    Researchers have spotted yet another malicious campaign that abuses Google
    Ads to steal peoples sensitive data - specifically Amazon Web Service ( AWS ) login credentials.

    Experts from Sentinel Labs recently discovered a Google Ads campaign that advertised a malicious landing page that appeared near the top of the search engine's results for the cloud giant.

    People who would use Googles search engine to search for aws would see,
    ranked second, a malicious landing page that impersonated a vegan food blog. Categorizing stolen data

    Those heading to that site would then be prompted with a fake AWS login page where, once entered, the information would be stolen.

    Furthermore, the site prompted the victims to select if they are a root or
    IAM user, helping crooks categorize the stolen credentials based on utility and value.

    The attackers also added a JavaScript function, disabling right clicks,
    middle mouse buttons, and keyboard shortcuts, the researchers added, speculating that the feature was included to discourage victims from easily navigating away from the landing page. Read more

    A global ad fraud campaign based on Google Ads has made millions


    This Google Ads campaign pushes malware that your antivirus can't pick up


    Here's our rundown of the best endpoint protection services

    Sentinel Labs discovered the campaign on January 30, 2023, and further investigation uncovered that the attackers were most likely Brazilian.

    The researchers reported the attack to CloudFlare which shut down the malicious account but BleepingComputer claims the ads on Google are still active. We werent able to independently verify if that is still the case, or if Google did its part in the meantime.

    Cybercriminals constantly try to leverage Googles ad network to deliver malware and steal peoples data. The search engine giant is generally
    perceived as trusted, making people less vigilant when clicking on search engine results. Last December, researchers from Malwarebytes spotted a campaign in which scammers used the traffic from an adult website to generate clicks on Google Ad banners, netting huge returns. Here's our take on the
    best firewalls today

    Via: BleepingComputer



    ======================================================================
    Link to news story: https://www.techradar.com/news/malicious-google-ads-campaign-targets-aws-users


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)