Deceptive Google Ads Mimic IP Scanner Software to Push Backdoor | allinfosecnews.com

April 19, 2024, 12:23 p.m. | Madalina Popovici

Heimdal Security Blog heimdalsecurity.com

Cybersecurity researchers unveiled a new malvertising campaign that uses malicious Google ads to deliver a backdoor dubbed ‘MadMxShell’. The ads leverage a set of domains to push the backdoor and mimic legitimate IP scanner software. The 45 domains, registered between November 2023 and March 2014 pose as IP scanner software such as: Angry IP Scanner […]

The post Deceptive Google Ads Mimic IP Scanner Software to Push Backdoor appeared first on Heimdal Security Blog.

ads backdoor campaign cybersecurity cybersecurity news domains google google ads ip scanner madmxshell malicious malvertising malvertising campaign march mimic november november 2023 researchers scanner software

More from heimdalsecurity.com / Heimdal Security Blog

Patch Now! CrushFTP Zero-day Lets Attackers Download System Files 1 week, 2 days ago | heimdalsecurity.com

attackers critical crushftp customers +22

MITRE Breached – Hackers Chained 2 Ivanti Zero-days to Compromise VPN 1 week, 2 days ago | heimdalsecurity.com

attack authentication authentication bypass breach +30

A System Administrator’s Challenges in Patch Management 1 week, 2 days ago | heimdalsecurity.com

administrator alex benefits challenges +13

Free and Downloadable Account Management Policy Template 1 week, 3 days ago | heimdalsecurity.com

account accounts business data +16

Atera vs. ConnectWise: Head-to-Head Comparison (And Alternative) 1 week, 4 days ago | heimdalsecurity.com

article atera balance complexity +11

NinjaOne vs. Atera: A Deep Comparison Between the Solutions 2 weeks ago | heimdalsecurity.com

atera business critical customers +22

Deceptive Google Ads Mimic IP Scanner Software to Push Backdoor 2 weeks ago | heimdalsecurity.com

ads backdoor campaign cybersecurity +16

CrowdStrike vs. SentinelOne: Which One Is Better For Endpoint Security? 2 weeks, 1 day ago | heimdalsecurity.com

business can crowdstrike cybersecurity +13

Surge in Botnets Exploiting CVE-2023-1389 to Infect TP-Link Archer Routers 2 weeks, 2 days ago | heimdalsecurity.com

bleeping computer botnet botnets command +24

Senior Security Engineer - Detection and Response

@ Fastly, Inc. | US (Remote)

View on infosec-jobs.com

Application Security Engineer

@ Solidigm | Zapopan, Mexico

View on infosec-jobs.com

Defensive Cyber Operations Engineer-Mid

@ ISYS Technologies | Aurora, CO, United States

View on infosec-jobs.com

Manager, Information Security GRC

@ OneTrust | Atlanta, Georgia

View on infosec-jobs.com

Senior Information Security Analyst | IAM

@ EBANX | Curitiba or São Paulo

View on infosec-jobs.com

Senior Information Security Engineer, Cloud Vulnerability Research

@ Google | New York City, USA; New York, USA

View on infosec-jobs.com