this post was submitted on 27 Jun 2024
371 points (98.7% liked)

Technology

59534 readers
3195 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

Mac malware that steals passwords, cryptocurrency wallets, and other sensitive data has been spotted circulating through Google ads, making it at least the second time in as many months the widely used ad platform has been abused to infect web surfers.

Like most other large advertising networks, Google Ads regularly serves malicious content that isn’t taken down until third parties have notified the company. Google Ads takes no responsibility for any damage that may result from these oversights. The company said in an email it removes malicious ads once it learns of them and suspends the advertiser and has done so in this case.

People who want to install software advertised online should seek out the official download site rather than relying on the site linked in the ad. They should also be wary of any instructions that direct Mac users to install apps through the right-click method mentioned earlier. The Malwarebytes post provides indicators of compromise people can use to determine if they’ve been targeted.

all 37 comments
sorted by: hot top controversial new old
[–] teft@lemmy.world 117 points 4 months ago (4 children)

Google Ads takes no responsibility for any damage that may result from these oversights.

I'm not a lawyer but that doesn't seem likely to hold up in court.

[–] beepaboopa@lemmy.world 65 points 4 months ago (1 children)

Yeah... Just because you say you'd prefer to not take responsibility doesn't absoluve you from responsibility.

Unless it does, in which case I will begin committing crimes and saying that constantly.

[–] cygnus@lemmy.ca 20 points 4 months ago

Just buy Google ads before committing crimes and you're all set!

[–] Chozo@fedia.io 15 points 4 months ago

It holds up about as much as those "Not responsible for broken windshields" stickers on the back of dump trucks. Which is to say: not at all.

[–] 100@fedia.io 11 points 4 months ago* (last edited 4 months ago)

yeah adblockers arent going to be turned off if the companies serving them dont bother to even check for malware or phishing

[–] Eggyhead@kbin.run 6 points 4 months ago

We’re just going to put this extra window on your car, and if thieves find a way to use our window to break into your car, it’s not our fault your shit got stolen.

[–] HogsTooth@lemmy.world 76 points 4 months ago (3 children)

With even the FBI recommending adblockers maybe ads aren't the thing we should prop up our economy with. They don't work, people hate them, and now even passively ignoring them isn't an option. But I don't know if the world can operate on the Patreon model.

[–] Eggyhead@kbin.run 26 points 4 months ago

I think you could eliminate all tracked advertising across the internet and the losses would be much smaller than Google would have you believe.

[–] RustyShackleford@literature.cafe 16 points 4 months ago

It’s the folly of humanity, to believe the problem will always be the next generation’s problem. Selfish desire first, concern second.

[–] TrickDacy@lemmy.world -4 points 4 months ago (1 children)

They don't work? How naive.

[–] HogsTooth@lemmy.world 11 points 4 months ago (2 children)

On a bigger scale, I think it's all wasted money. Maybe its the autism, but the more I see a company name, any company name, the less I want it in my house.

[–] TrickDacy@lemmy.world 0 points 4 months ago* (last edited 4 months ago) (1 children)

The data is very clear... Ads work. They absolutely shouldn't almost ever, but they do. With the cornucopia of analytics available, companies have long been able to see if their ads work, and if they didn't, they would've stopped long ago. Hell even before the Internet they had ways to prove ads work.

edit: gotta say it's pretty sad that so many simpletons downvoted this. Ya know, ads working is something that I hate. I hate ads. I want them all to go away. I'm simply stating a well known fact: they absolutely work, even on people like you and I who do our best to block and ignore them.

You're pretty fragile if that fact upsets you enough to shoot the messenger.

[–] HogsTooth@lemmy.world 0 points 4 months ago (1 children)

Then stop beating the "it's all hopeless" drum. You're certainly not going to change my mind.

[–] TrickDacy@lemmy.world 0 points 4 months ago

Uh I didn't...

Ads work. It's a fact. Just because it's a sad fact doesn't mean I want you to be sad.

[–] pyre@lemmy.world 0 points 4 months ago (1 children)

if you think it doesn't work on you, it's more likely to work on you. if it didn't work the world would be a much better place, but unfortunately they definitely work.

but i agree it's stupid especially as a business model and it shouldn't exist.

[–] HogsTooth@lemmy.world 1 points 4 months ago* (last edited 4 months ago) (1 children)

You sound like an ad for advertising. I've seen the studies and I think our relationship with companies is changing. I trust people/groups/companies very differently than my parents and grandparents do. To just give up... Fuck that.

[–] pyre@lemmy.world -1 points 4 months ago* (last edited 4 months ago) (1 children)

yeah ads famously criticize the product and talk about how dangerous it is

[–] adarza@lemmy.ca 64 points 4 months ago (2 children)

all the more reason to use an adblocker... and a script blocker if you don't mind the extra clicks to get a whitelist going or to temporarily allow them somewhere.

[–] dhhyfddehhfyy4673@fedia.io 23 points 4 months ago (1 children)

and a script blocker

Way too many people still don't understand that this is an essential part of the security equation. Many sites execute 10+ scripts, many of which are doing who the fuck knows what, and said sites typically only need like 1 to 3ish allowed to function.

Sure it's inconvenient compared to not doing anything, but it's mostly front loaded inconvenience. Once you get things dialed in for frequently used sites, and learn to tell at a glance what needs to be allowed, its really not much hassle at all tbh.

[–] ChilledPeppers@lemmy.world 4 points 4 months ago (1 children)

May I ask you what script blocker I should use? I use Firefox with ublock.

[–] dhhyfddehhfyy4673@fedia.io 0 points 4 months ago
[–] ShittyBeatlesFCPres@lemmy.world 10 points 4 months ago (1 children)

Are there shared whitelists? It seems like something that isn’t really practical without them. I’m a web developer who has never served one ad but the front-end tools now basically export all JavaScript. You’d probably just get a blank page on any site made recently that’s more complex than a portfolio/resume page.

[–] towerful@programming.dev 5 points 4 months ago (1 children)

Larger sites cater towards scriptless web for accessibility requirements.
Smaller sites don't need SPA, so will most likely work to some degree.
The better (not necessarily bigger) blog systems will use scripting for fancy things, but will have fallbacks and will still work.

It's the middle tier web-app (and sites that want to be a web app but have no reason to be) that will run SPA without any fallback. You know, the ones that want to send notifications and know your location and all that fun stuff.

[–] TrickDacy@lemmy.world 4 points 4 months ago

The person you're explaining websites to is a web developer and they are correct. There being a ton of websites needlessly dependent on JavaScript is well known and long lived.

[–] demonsword@lemmy.world 24 points 4 months ago

Google Ads takes no responsibility for any damage that may result from these oversights

...and there it is, the root of the problem. If this kind of thing did any damage to Google's bottom line, I doubt it would happen frequently

[–] conciselyverbose@sh.itjust.works 14 points 4 months ago

I absolutely install stuff that doesn't have a signature verified by Apple, but you should be damn sure you know what you're installing before bypassing that security.

[–] 667@lemmy.radio 12 points 4 months ago (4 children)

Ensure you have multiple layers of ad blocking. A winning combination blocks first at the DNS level, then at the browser level, and finally at the element level.

AsGuard DNS, uBlock, and ABP.

I virtually never see ads.

[–] stickmanmeyhem@lemmy.world 17 points 4 months ago

Don't bother with ABP. Use AdGuard, uBlock Origin, and Privacy Badger.

[–] cmnybo@discuss.tchncs.de 9 points 4 months ago

Don't use more than one ad blocker extension on the same browser, it can cause conflicts.

[–] sugar_in_your_tea@sh.itjust.works 6 points 4 months ago (1 children)

Consider PiHole as a whole home network first line of defense.

[–] IphtashuFitz@lemmy.world 3 points 4 months ago

Yup. Blocks ads on our iPhones, iPads, streaming services, etc. Between that & uBlock Origin on our laptop browsers we hardly ever see ads.

[–] adarza@lemmy.ca 1 points 4 months ago* (last edited 4 months ago)

ublock origin and adblock plus do the same thing and can be configured to use the same filter lists.

pick one or the other (tip: choose ubo) for in the browser.

[–] 555_1@lemmy.world 8 points 4 months ago

Good thing Google ads are blocked on my Mac lol.

[–] kennebel@lemmy.world 4 points 4 months ago

(Hyperbole) I’m shocked! I have been informed for decades, usually at high levels of snootiness, that Macs don’t have viruses unlike those pathetic other operating systems…

(hahaha)

[–] autotldr@lemmings.world 4 points 4 months ago

This is the best summary I could come up with:


Digging further into the ad shows that it was purchased by an entity called Coles & Co, an advertiser identity Google claims to have verified.

The reason for this is to bypass a macOS security mechanism that prevents apps from being installed unless they’re digitally signed by a developer Apple has vetted.

The address happens to host the control panel for Poseidon, the name of a stealer actively sold in criminal markets.

The discovery comes a month after Malwarebytes identified a separate batch of Google ads pushing a fake version of Arc for Windows.

Like most other large advertising networks, Google Ads regularly serves malicious content that isn’t taken down until third parties have notified the company.

They should also be wary of any instructions that direct Mac users to install apps through the right-click method mentioned earlier.


The original article contains 534 words, the summary contains 138 words. Saved 74%. I'm a bot and I'm open source!