Google-hosted malvertising leads to fake Keepass site that looks genuine

EnlargeMiragec/Getty Images

Google has been caught hosting a malicious ad so convincing that there’s a decent chance it has managed to trick some of the more security-savvy users who encountered it.

Enlarge / Screenshot of the malicious ad hosted on Google.Malwarebytes

Looking at the ad, which masquerades as a pitch for the open-source password manager Keepass, there’s no way to know that it’s fake. It’s on Google, after all, which claims to vet the ads it carries. Making the ruse all the more convincing, clicking on it leads to ķeepass[.]info, which when viewed in an address bar appears to be

→ Continue reading at Ars Technica

Related articles

Comments

Share article

Latest articles