It's so great isn't it.

I remember some old tech guy used to say: "they make virus to sell you antivirus..." guess he wasn't that wrong...

Malalalaware

The irony is if one uses adblockers they don't see the sponsored content and malicious links in the search results -- but if the user acts like Google wanted and doesn't use adblockers, they can get scammed by the sponsored links in the search results.

@@ugurcansayan Top comment! 👍

Agreed. I've used search engines for twenty years now, and never once clicked a sponsored link. Not even once.

​​​@@angrydachshund what a great achievement. Simply use an adblocker.

@@Deo-v1z Common sense > adblocker

Or using chrome edge browser the first one its a malwRe domain

uBlock Origin - blocks all ads - but you can also whitelist creators easily,

I think they get verified once and then Google doesn't care. And that's when they post the malicious ads.

The use the following method: they make a real website (white hat) and a fake one (black hat). When the google servers will access the page to verify it, they recognize their IP and show the real website, and for other cases, the fake one.

@@marcokoovka Well, I would say this is still the problem of Google. They need to develop better verification methods if they want to cash in on the ads. Or pay for the damages.

absolutely xd

Google will have to pay another few millions or billions to the rich people in government in 10 years... They'll probably make that back with even more scummy practices

Because they make the rules that are then signed into laws. It's a whatsname... lobbycracy

Because it's probably impossible to stop Millions of websites built for malware or scamming

rules for thee and not for me.

Cuz Money Money Money (in Mr Krabs voice)

Yes, this is how it works. It's like when the FBI ran CP forums on the darknet where they (I hope that they didn't distribute those images and videos) shared it with predators to then catch them. This is how Google does now. They block all the adblockers so everyone gets ads so they can click on the malicious links to get viruses and who knows maybe some kind of ransomware. Sadly Google will never take the responsibility because Money = Power.

the whole idea of "show less" is maddening. i want NONE

agreed, however it could be spoofed and also if you have a webagent/hwid randomizer it will be problematic

Because it’s cheaper to relay on user awareness than make complex security systems

@@Misimpa Sad but true.

ikr, so mediocre so boring, I miss the 2000s

No shit sherlock

@@TheBoostedDoge I miss when viruses used to be flashy and creative.

I want a ransom before cookie stealerse​@@NicoTheCinderace

I get them every day. Never cease to amaze me the different ways shapes and forms.

Unfortunately the VAST majority of people will click on the sponsered links

That will never happen

@@danibell106 in america, but in the EU, thats a whole different story if they ever pass rules enabling this punishment

80% of google's yearly profits per case should suffice

@@Diddz Google has been getting away with this kind of stuff for years so I don't think anything will happen to them this time either

What? Elaborate more please, I’m a boomer

​@@YaBoyfelipe hackers take your browser cookies . So, they don't have to deal with authenticator or 2 step verification.

@@YaBoyfelipe Im not super techy into cyber security stuff as well, but basically when you login into websites in your browser, the session gets saved so the website can determine if you’re logged in and when you logout and stuff. Therefore, 2FA is rendered useless since if the hackers get your session/cookie, the website would think it’s you and hence wouldn’t ask for any sorts of confirmation

@@kozuta8858was there any way you fixed it and any recommendations to those who are new to this information and ways to prevent this?

@@kozuta8858 Hello goodmorning/night/afternoon question, how did you fix the issues or are you still currently fix the issue with this matter and what precautions did you take and what did you do to fix the issue?

I used Authy desktop because I'm not attached to my mobile 24/7

I was asking myself exact same question. Why do I need authenticator software in the first place? And @lev0x why would I uninstall malware bytes after scanning my pc in safe mode?

It is supposed to like name suggest authenticate, to give extra layer of security and make it harder to get into your account. What you are logically asking that if you are having this on your PC does this decrease my security? Well ask yourself do you have Password manager on your phone? If you do then in theory you have 1fa since if someone manage to get your phone and get acess to PM and 2FA app you are done. Same will happend in you would have them on PC. So if you are willing to have password manager only on PC and 2FA app only on phone you are in theory safer. But it would have drawback having to log in from browser on phone into for ex. bitwarden everytime when you are trying to log in. So what this people are asking for is quality of lifechange in login procedure that create vulnerability but most likely they already have it in their pockets everytime they walk away from home. And for the ending: thats why yubico is best option with aegis support: Create encrypten backup at aegis and keep it on encrypted pen/disc then delete app and use yubikey and it authenticator instead. There for you have safest version of 2FA with max comfort.

don t be a pozzy . . . What did you expect? It to be milk and honey? HA HA HA This is jungle and wolves. The best man wins!

@@black_dragon274 i expected a less du MBA ss reply.

@@shadhinov definitely u are a pozzy

@@shadhinov definitely u are a pozzy

If you have a AV good firewall and common sense taking a bit of time verifying what you download and install you are usually fine

Same

Are you still going to love it when you lose it and can't remember where you last had it?

That's why I have lots of yubi keys 😂. Paranoid much? Yup.

​@@wildbill4496that's why it's recommended to have at least 2, with one stored away like in a fire proof safe

I need to get one 😂

Maybe malwarebytes, just unistall malwarebytes after the scan or disable it

@@lev0x Sounds good to me, thank you Levox

Run Microsoft Defender Offline Scan, Malwarebytes is also good. If you're still infected, might want to invest in a paid subscription for a good AV, at least for a short while.

U can still use Brave or Chrome with ublock lite

microsoft defender could've been one of the vendors that didn't flag it. they would need to send out a patch to update defender for this specific malware

I searched the file hash on VT, Microsoft flags it. AFAIK Defender is lazy by default and tools like DefenderUI makes it detect faster

These detections are a month or more after the malware is released. On day one it was only detected by one vendor.

@@pcsecuritychannel a ok, that makes more sense, thanks for the quick response!

​@@pcsecuritychannelbesides that if someone uses Norton instead of a real Antivirus they are F...ed

Stealing your session cookies stored in your browser after you successfully log in, is an easy way to bypass 2fa authentication.

​@@taqtix8949 Chromium team is working on a local encryption feature that should render this no longer possible.

Removing it

get a new one (new iso

Not using an ad blocker is a bad security practice or a good one?

@@YaBoyfelipe LOL

Do you mean google authentication in general or only on windows? And if google auth in general, why so?

​@@MagicMasterCommentsThe last I heard of, the cloud backup didn't have end to end encryption. That's why I use Aegis

@@UmVtCg Explain bro, I’m a boomer

What are you using?

If you are a "patient zero" sortof, it can be undetected.

hash

@@SoundsBy80K ? it is installed chrome extension how can i tell plz?

@@thisoldminer if you want to be safe remove it and install it from verified source but if youve installed the malicious one, you wouldnt be able to type here pretty sure.

You would be surprised. Most non tech savvy people, especially the ones I work with in K-12 IT, have 0 clue about web addresses.

@@JJFlores197 what is k12 it

@@Samsung-zg9ql Public education in the USA. K-12 refers to kindergarten through 12th grade

@@JJFlores197 ok...👍

I can agree about Windows, but should we be worried about Android too? If so, should we stop using smartphones all together for our safety? I need some good advices since malware has become increasingly worse and smarter than us.

​@@木島カオリ ​ @user-rx4up7jf9y Organisations will pay more for smartphone vulnerability the privacy community recommends pixel phone with Graphane OS as the pixel phone has an unlocked bootloader and has updates to the newest version of Android and security updates for years to come. I can buy the latest phones once I'm rich but I don't care for smartphone security as smartphone screens are small and I don't put anything important on my phone when I'm home I use a Computer tower. even a Cheap laptop would be a small improvement over a smartphone. I'm not telling you to stop using a smartphone but Focus on storing your information on a Computer with an open source operating system and encrypt your hard drive like I do with Linux. I can add file encryption with Veracrypt. With Smartphones, they won't have full disk encryption when you boot up the phone, unlike my Linux computer which has full disk encryption. If a smartphone user gets hacked I am not worried most normies use iPhones anyway my best advice is to use a Computer tower for more important tasks instead of putting all your data on a phone. If I want to store files I can install Qubes os on a SSD I use Kali Linux as my daily distro. and I can sometimes use Windows for gaming or a little testing/work.

So youre basically an asshole.

Yes, Google ads are one of the major sources of malware and scams.