Skip to main content

Protecting Your Digital World: Defending Against Malvertising


By Arthur Moses Opio

In today's digital age, where online advertising is ubiquitous, there exists a nefarious threat known as "malvertising." Malvertising refers to the malicious use of online advertisements by cybercriminals to steal data or deliver malware to unsuspecting victims' devices. This insidious form of cyberattack can take various forms, all of which exploit online advertising as an entry point for their sinister activities.

According to cybersecurity expert Malcolm Higgins of NORD VPN, malvertisers employ a crafty approach: they create seemingly harmless advertisements infused with concealed lines of malicious code. These malicious ads are then strategically placed on legitimate websites or introduced onto their malicious domains. When an unwitting user clicks on one of these ads, they are unwittingly redirected to a dangerous server, which serves as the launchpad for the subsequent stages of the attack.

As part of the cybersecurity awareness month, we share with you some insights on Malvertising that you should take note of.

Understanding the Severity of the Threat

Research underscores the grave dangers of malvertising. Computers can be compromised, sensitive data can be stolen, and malware can infiltrate systems through these deceptively benign ads. As a user, it's crucial to exercise caution and be vigilant when you encounter enticing offers like "You've won an iPhone" or "Congratulations, you've won $100,000." Clicking on such ads can open the floodgates to a host of security issues.

One disconcerting reality is that malicious ads are not limited to shady corners of the internet. They have infiltrated even the most reputable websites. Major online platforms, including news outlets like The New York Times and streaming services like Spotify, have fallen victim to malvertising, reminding us that no site is entirely immune to this pervasive threat.

Protecting Against Malvertising

To shield yourself from the perils of malvertising, consider implementing the following preventive measures:

  • Use an Ad-blocker: While not foolproof, ad-blockers significantly reduce your exposure to malicious ads.
  • Antivirus Software: Employ reputable antivirus software, especially if you are a regular internet user. Antivirus programs can mitigate the damage caused by malvertising.
  • Stay Up-to-Date: Keep your software and operating systems up-to-date, as outdated software often becomes the target of exploit kits used by malvertisers.
  • Disable Auto-play: In your browser settings, disable the auto-play function to neutralize content that relies on video plugins.
  • Practice Skepticism: The most common malvertising threats occur post-click. Avoid these threats by refraining from engaging with aggressive promotions and dubious links. Always pause to assess the legitimacy of an ad before interacting with it.

Understanding the Consequences

Once a user clicks on a malicious ad or is forcibly redirected, the attack enters its next phase. The server to which the user is connected contains an exploit kit designed to scan the system for vulnerabilities. As soon as these vulnerabilities are identified in the operating system or browser, the attacker can proceed to install additional malware. From this point on, they have the capability to infiltrate and manipulate the compromised system at will.

In conclusion, the threat of malvertising is real and pervasive. As users, it is our responsibility to educate ourselves about this threat and adopt proactive measures to protect our online security. By exercising caution, keeping our systems updated, and employing security tools like ad-blockers and antivirus software, we can significantly reduce the risk of falling victim to malicious advertisements. Stay vigilant and safeguard your digital world against the hidden dangers of malvertising. Your online security is paramount.

© 2022 All rights reserved - Directorate for ICT Support (DICTS) - Makerere University

Available Office Time: 8:00am - 5:00pm (Monday - Friday)

Service Desk -

Phone: 0414 531343/437
Hours: 9:00am - 5:00pm