Experts warn hackers are hiding malware inside Google's own ad systems — here's what we know
- Google's ad domain became the perfect cover for a malware delivery chain
- The malware rebuilt fake company pages using real logos pulled live online
- Five attack stages ran almost entirely inside memory, leaving almost no trace
Cybersecurity researchers are warning about a malware campaign which uses Google’s ad infrastructure to disguise malicious activities.
Research from Huntress found the operation begins with malicious spam emails carrying HTML attachments designed to redirect users toward a carefully layered infection chain.
The campaign drew attention because the redirect process initially passed through ad.doubleclick.net, a legitimate Google-owned ad and tracking domain trusted widely across security systems.
The malware chain hides behind trusted infrastructure
This routing method matters because many email gateways and web filtering systems rarely treat Google ad domains as suspicious or potentially malicious destinations.
The attachment itself contained almost no meaningful content beyond a hidden redirect forwarding victims toward additional infrastructure controlled...
Copyright of this story solely belongs to techradar.com. To see the full text click HERE