Discover how a fake captcha malvertising campaign with over 1M daily hits delivers stealer malware, exploiting ad networks and deceptive techniques

Guardio's platform is a resource for cybersecurity professionals and internet users, offering insights into online security threats, malware protection, and data privacy. Through articles, security alerts, and educational resources, Guardio offers insights into common cybersecurity risks, security best practices, and digital hygiene habits. Readers can learn about protecting their devices from malware, securing their online accounts, and staying safe while browsing the internet to mitigate cyber threats and safeguard their personal information.

Guardio

Guardio Labs investigated a large-scale fake CAPTCHA campaign distributing Lumma info-stealer malware via an ad network. This malvertising campaign involved over 3,000 content sites and delivered over 1 million daily ad impressions, causing significant data and financial losses. The research highlighted the interconnected roles of ad networks and tracking services, with Monetag and BeMob identified as key players. This underscores the pervasive threat of malvertising and the need for stricter oversight in the digital advertising ecosystem.

“DeceptionAds” — Fake Captcha Driving Infostealer Infections and a Glimpse to the Dark Side of Internet Advertising

Evolving From Advertising to Malvertising Captchas

Fake-Captcha’s Malvertising: End-2-End Analysis

The Publishers: Pirated Content and Click-Baits