The crooks are purchasing adverts that relate to legitimate businesses and then redirecting unsuspecting users to sites that attempt to install malware on the user’s computer.
At the beginning of the month, the security firm discovered that a known criminal group had registered the domain Smarttracker.org and opened a Google Adwords account a little over a week later, buying campaigns for popular search terms.
While the adverts displayed a trusted URL, any users clicking on the links were redirected through the Smarttracker.org site first, before being sent on to the proper destination. Google has since terminated the offending account.
Exploit Prevention Labs claims its LinkScanner software can provide protection against such attacks.