Cybercriminals Exploit DeepSeek Popularity with Fake Google Ads to Spread Malware
TL;DR
Cybercriminals are leveraging DeepSeek’s rising popularity by using fake sponsored Google ads to distribute malware. Users are advised to avoid clicking on sponsored search results and verify advertisers to ensure legitimacy. The issue highlights the ongoing challenges in cybersecurity and the need for vigilance against evolving threats.
Cybercriminals Exploit DeepSeek Popularity with Fake Google Ads to Spread Malware
Cybercriminals are capitalizing on the growing popularity of DeepSeek by using fake sponsored Google ads to distribute malware, according to a warning from Malwarebytes researchers. These threat actors are exploiting the trust users place in search engine results to deliver harmful software.
The Rise of DeepSeek and Cyber Threats
As DeepSeek gains traction, cybercriminals are quickly adapting their tactics to take advantage of unsuspecting users. By creating convincing fake websites and linking them to malicious Google ads, these criminals are able to bypass Google’s controls and rank higher in sponsored search results.
The Malware Delivery Mechanism
Researchers have observed that clicking the download button on these fake DeepSeek websites delivers an MSIL-based Trojan, detected as Malware.AI.1323738514. This highlights the sophistication of the attacks and the need for users to be cautious.
Bypassing Google’s Controls
Cybercriminals are finding ways to outbid legitimate brands and rank higher in sponsored search results, making it difficult for users to distinguish between genuine and malicious ads. This underscores the importance of verifying the authenticity of advertisers before clicking on any links.
Recommendations for Users
To protect against these threats, users are advised to:
- Avoid clicking on sponsored search results.
- Verify the advertiser by checking the details behind the URL.
- Consider installing an ad-blocker to filter out sponsored ads.
Global Concerns and Regulatory Actions
The issue has garnered attention from regulatory bodies worldwide. In January, Italy’s Data Protection Authority, Garante, requested information from DeepSeek regarding its data collection practices. The app was subsequently removed from the iPhone App Store and Google Play Store in Italy, although the reason for the removal remains unclear.
In February, Texas Governor Greg Abbott banned DeepSeek and other Chinese-owned social media apps from state-issued devices, marking the first such ban in the United States. This ban follows similar actions taken against TikTok on government devices.
Conclusion
As DeepSeek continues to gain popularity, it is crucial for users to remain vigilant against cyber threats. By following best practices and staying informed about the latest security measures, users can protect themselves from malicious activities. The ongoing scrutiny from regulatory bodies highlights the global concern over data privacy and security in the digital age.
For more details, visit the full article: source
Follow the Author
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, Deepseek)