Malvertising - What it is, red flags to spot, and how to stay safe

Malvertising

What it is

Malvertising is when attackers hide malicious code inside online ads. You don’t have to click a sketchy site - a booby-trapped ad on a legit page can redirect, phish, or install malware through drive-by downloads and pop-ups.

How it works - quick tour

  • Compromised ad networks serve malicious creatives to reputable sites

  • Hidden code redirects you to exploit pages or fake updates

  • Fingerprinting picks targets and avoids security sandboxes

  • Payloads include spyware, ransomware, and credential stealers

Red flags

  • Pop-ups asking to install updates or enable notifications

  • Pages that reopen themselves or trigger multiple redirects

  • Downloads starting without you clicking a clear button

  • Security prompts that look slightly off-brand

If it hits - first moves

  1. Close the tab or kill the browser process - don’t click prompts.

  2. Run a full anti-malware scan, reboot, then scan again.

  3. Clear browser cache and notifications, remove unknown extensions.

  4. From a clean device, change passwords and enable MFA if anything seemed phishy.

Prevent it

  • Keep the browser, plugins, and OS updated.

  • Use a reputable ad blocker and DNS/web filtering.

  • Disable or limit browser plug-ins like legacy players.

  • Avoid pirated streams and shady download portals.

  • For orgs: enable network-layer protections and inspect egress traffic.

    Glossary (A–Z)

    All A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

      • Related Articles

      • Phishing

        What it is Phishing is a scam where someone pretends to be a trusted person or service to trick you into giving up passwords, card numbers, or other sensitive data. It shows up in email, texts, social DMs, and look-alike websites. For a quick ...

      • Web Protection

        What it is Web protection is a bundle of tools and settings that keep you safer while you browse. It blocks dangerous sites and downloads, warns about fake logins, filters sketchy links, and helps keep your info private. It can run on your device ...

      • Web Cache Poisoning

        What it is Web cache poisoning is when attackers sneak bad content into a website’s cache. The cache is a “shortcut” server use to make pages load faster for everyone. If it’s poisoned, later visitors get the attacker’s fake version instead of the ...

      • Malware

        What it is Malware is any software made to harm your device or data. It can steal passwords, lock your files, spy on activity, or hijack your browser. For a quick primer and examples, see our malware explainer. How it spreads Phishing emails and fake ...

      • Mobile Malware

        What it is Mobile malware is malicious software that targets phones and tablets. It can steal messages and passwords, spy through permissions, hijack your browser, or lock files for ransom. Infections usually arrive through shady apps, smishing ...