Hackers Abusing Search Engine Ads to Deliver Malware

Threat actors are buying ads for malicious websites to trick victims into downloading malware, leading to potential data theft and ransomware. Ads on search engines and social media are utilised due to their wide-ranging controls. Four malware families have been identified in these campaigns: PAPERDROP, PAPERTEAR, DANABOT, and DARKGATE, all of which have unique functions and capabilities.