Google update to software downloads

Posted by on Mar 20, 2015 in Ad Injectors, Malvertising, Phishing

Google has a policy update on the way which is sure to impact the monsters that target vulnerable audiences with a myriad of deceptive downloads. Dear AdWords Advertiser, We’re writing to let you know about a change to Google’s advertising policies that might affect your AdWords account. Around late April, the Google AdWords policy on […]

Bee Coupons = Enhanced Browsing?

Bee Coupons = Enhanced Browsing?

Posted by on Apr 23, 2014 in Ad Injectors

Search for “download skype”, “download google chrome”, “download firefox” or a myriad of other popular applications and you may find yourself unlucky enough to run into an ad injector. Now an ad injector won’t present itself as an ad injector. Typically, it will bundle itself into an installer which will opt the user into installing […]

The Ad Networks and Advertisers that Fund Ad Injectors

Posted by on Sep 18, 2013 in Ad Injectors

Ad injectors insert ads into others’ sites, without permission from those sites and without payment to those sites. See example screenshots below showing injections into YouTube, Amazon, CNN, Dell, and eBay. In this article, we review the basic operation of ad injectors, then examine the ad networks, exchanges, and other intermediaries that broker the placement […]

Ad Injector Workflow

Posted by on Jul 30, 2012 in Ad Injectors, Mad Monday, Malvertising

Ad injectors turn a profit primarily by presenting a user with advertisements. Sometimes the advertisements are servedĀ on a CPM model (Cost Per Mille or Cost Per Impression), this is where the ad injector organization is paid every time an ad is seen by a user. Other times it’s CPC (Cost Per Click), in this model […]

Ad Injectors courtesy of and VideoFileDownload

Posted by on May 29, 2012 in Ad Injectors, Malvertising

A binary signed by “TUGUU SL” is targeting the Browser vertical on popular search engines. Essentially, they are buying the top ad spots for queries the likes of “Google Chrome” in a bid to lure unsuspecting users to install what they have in store. This is a great example of using the online advertising ecosystem […]

Yontoo and PPI

Posted by on May 22, 2012 in Ad Injectors, Malvertising

PPI stands for Pay Per Install and involves an advertiser paying an affiliate (typically through a market or network) to install their software on an end user’s machine. For every unique install that an affiliate is able to generate, the advertiser will pay a small sum of money (anywhere from a few cents to a […]


Posted by on Mar 13, 2012 in Ad Injectors, Malvertising

I was contacted by a reader yesterday who noticed that I had Wikipedia as one of the pages in the little image that I drew up for the post. I didn’t go into any detail as to why it was there since I thought it would be obvious. Apologies folks, sometimes I forget that non-technical […]

MAD Monday

Posted by on Mar 12, 2012 in Ad Injectors, Mad Monday, Malvertising

Today we take a look at an ad injector. It is no different from any other, for it makes its money from inserting ads into very popular Web sites, i.e., it is adding foreign content (typically pay per click ads) into a site which it does not own. One of the last ad injectors we […]

Ad Injectors

Posted by on Dec 9, 2011 in Ad Injectors, Malvertising

Ad Injectors are finally getting some attention, be sure to check out WSJ’s article on the subject here. Note that the software referenced (Pagerage and Buzzdock) are both available on Yontoo’s app market page here