Santa’s spyware: Hackers use Google results to push malware when deal-hunters search for these tech products
Everyone is looking for deals before Christmas, but many Google search results for deals on certain tech products could carry hidden malware and viruses.
This phenomenon is not new, as scammers have been known to hide malware while searching for names of celebrities.
But a new study reveals that Google results for popular tech products like iPads, Dyson vacuum cleaners and Ninja air fryers can take shoppers to fake websites that push malicious code onto their computers.
The company's researchers examined the top 60 shopping results for the most popular tech products each year, looking for viruses or malware.
They ranked the worst offenders by the number of search results that could secretly install spyware or other hacking tools on someone's computer.
Major criminals? The MacBook Air was first, with 20 of the 60 results raising red flags. Next were the Samsung Galaxy Buds with 19, then the Amazon Fire TV Stick with 18.
Here is the full list:
It is important to note that these malicious links are not located on the websites of real companies.
Instead, they're exploiting the popularity of these products to attract unsuspecting bargain hunters — which may be why a relatively cheap product like the Fire Stick has become an ideal hunting ground for online scammers.
People are very attracted and will click on fake links.
The report came from consumer price comparison website MoneySuperMarket.
Scammers are more sophisticated than they used to be. Links to malware or virus downloads can be hidden in Google ad results for popular technology products
These attacks, called “malicious advertising,” have been on the rise this year, according to Jerome Segura, senior director of threat intelligence at MalwareBytes.
“We have observed an increase in the volume, but also in sophistication, of malicious ad campaigns over the past few months,” Segura wrote. “Threat actors successfully apply evasion techniques that bypass ad verification processes and allow them to target specific types of victims.”
Here's how the scam works:
When you search for a product, some Google results are promoted at the top, which means the owners paid to have them appear at the top of the page.
These may include links that appear to belong to legitimate online retailers.
Clicking on one of these sites will take the shopper to a website that looks like the official site they are supposed to go to.
Once there, the software can begin downloading to your computer, allowing someone to take control of the device and steal personal data remotely.
Or there may not be any malware, but the fake site will enable you to fill your shopping cart and checkout.
Instead of mailing a package, you'll end up with fees charged to your account — and possibly more unapproved fees after that if the first one isn't caught.
These clone websites have become popular on social media, where TikTok accounts will steal a video reviewing someone's shoes, for example, and direct viewers to click on a link to a clone website.
Once the download is finished
Here's how to protect yourself:
Scammers using Google Ads results are becoming more sophisticated, so the best thing you can do to avoid falling victim is to slow down and think before you make a purchase.
The fake website name may be a slightly misspelled version of the real name. For example, “appIe.com” is written with an uppercase “i” instead of a lowercase “L.”
But these hackers have become very sophisticated, and are using a global alphabet that resembles the English language.
For example, use a lowercase Cyrillic letter “а” instead of the almost identical letter “a” from the Latin alphabet.
So, if you're not sure, go to a trusted website instead of clicking on search result links.
MoneySuperMarket He has additional recommendations:
- Credit cards offer better protection than debit cards in case you get scammed
- Look for independent customer reviews of the site before making a purchase there – there are no reviews on the site itself
- If the deals seem too good to be true, they probably are
- Keep your internet browser up to date and use reliable antivirus software
- Do not click on suspicious links. Even clicking “No” or “Cancel” on suspicious pop-up links can start downloading the software onto your device
So, if you're in a hurry to finish your Christmas shopping and are considering buying an iPad from a fishy-looking website that offers great deals and fast shipping, pause before clicking through.
(Tags for translation)dailymail