Question: What is “malvertising,” and should our clinic be worried about it? How can we protect against it?
Answer: “Malvertising is a malicious variety of online advertisements generally used to spread malware, and it is one of the most common ways of infecting computers with malware,” explained attorney John Roman, Jr., CISSP of Nixon Peabody LLP in a recent blog posting.
Malvertising involves “malicious ads that attempt to surreptitiously install crypto ransomware (this is the software that encrypts all of your data and holds it ransom until you pay the hacker to send you a key to unlock your files) and other malware on the computers of unsuspecting visitors” to websites, Roman said. “Hackers take advantage of vulnerabilities found in unpatched versions of Adobe Flash, Microsoft Silverlight, and other widely used Internet software. The malware is ‘installed’ by hackers through banner ads that are located on compromised ad networks.”
What to do: Websites are hacked every day, and a single click can infect your system. Roman offered the following tips to reduce the risks to your computers and network from receiving malware from malvertising websites: