Malvertising

Why Trust Techopedia

What Does Malvertising Mean?

Malvertising is a malicious form of Internet advertising used to spread malware.

Advertisements

Malvertising is usually executed by hiding malicious code within relatively safe online advertisements. These ads can lead a victim to unreliable content or directly infect a victim’s computer with malware, which may damage a system, access sensitive information or even control the computer through remote access.

Malvertising relies on social network advertising or user-supplied content publishing services. Malvertising may include preinstalled malicious programs set to launch through payloads at specific dates and times.

Techopedia Explains Malvertising

Usually, malvertising ads include active scripts that are built to download malware or force undesirable content to the victim’s computer. Malvertisers primarily use Flash and Adobe to spread malware because both applications are very popular with Internet users and highly prone to security vulnerabilities.

Malvertising is immune to encryption tools like Adobe’s Shockwave Flash (SWF). Malicious ads contain Flash ActionScript exploit code that corrupts SWF files. The SWFIntruder tool is an analysis kit that helps software security administrators detect malvertising. It was developed by the Open Web Application Security Project (OWASP).

Ad rotators use geotargeting technology to run preassigned malvertisements, which target users from specific countries and further complicate attack detection.

Because malvertising is included in websites and SWF files, anti-malware tools must be used to avert malvertising’s harmful effects, for the following reasons:

  • To differentiate between legitimate and malicious advertising
  • To track malvertisements and associated Internet Protocol (IP) ranges
  • To identify suspicious Flash files
  • To verify malicious website content
Advertisements

Related Terms

Margaret Rouse
Editor

Margaret jest nagradzaną technical writerką, nauczycielką i wykładowczynią. Jest znana z tego, że potrafi w prostych słowach pzybliżyć złożone pojęcia techniczne słuchaczom ze świata biznesu. Od dwudziestu lat jej definicje pojęć z dziedziny IT są publikowane przez Que w encyklopedii terminów technologicznych, a także cytowane w artykułach ukazujących się w New York Times, w magazynie Time, USA Today, ZDNet, a także w magazynach PC i Discovery. Margaret dołączyła do zespołu Techopedii w roku 2011. Margaret lubi pomagać znaleźć wspólny język specjalistom ze świata biznesu i IT. W swojej pracy, jak sama mówi, buduje mosty między tymi dwiema domenami, w ten…