Hackers Are Using Google To Steal Microsoft Passwords

Forbes - Jan 31st, 2025

Security researchers at Malwarebytes have uncovered a malicious campaign where hackers are using Google ads to target Microsoft users by deploying phishing attacks disguised as legitimate login pages. These fake ads appear in Google search results and are designed to steal login credentials from users attempting to access Microsoft’s advertising platform. Jerome Segura from Malwarebytes reported that these ads managed to bypass Google's security measures, allowing hackers to redirect users to phishing sites that mimic Microsoft’s login pages, capturing passwords and bypassing two-factor authentication.

This discovery highlights a significant vulnerability in online advertising, with implications for the ongoing rivalry between Google and Microsoft in the digital ad space. While Google has strict policies against misrepresentation and has enforcement teams to counter such fraudulent campaigns, this incident underscores the need for continuous vigilance and improved security measures. The attack not only affects Microsoft Ads but could potentially target other platforms, emphasizing the persistent threat of phishing through malvertising and the necessity for users to remain cautious.

Cybersecurity Microsoft Google Phishing Malwarebytes Jerome Segura Malvertising

Story submitted by Fairstory

RATING

6.6

Fair Story

Consider it well-founded

The article provides a timely and relevant overview of a cybersecurity threat involving hackers using Google's platform to target Microsoft passwords. It draws on credible sources, like Malwarebytes, to substantiate its claims, although it could benefit from additional perspectives and more detailed verification of the facts presented. The narrative is clear and informative but slightly technical, which might limit its accessibility for a general audience. While the piece effectively raises awareness about the issue, its impact could be enhanced by including more diverse viewpoints and practical advice for readers. Overall, the article is a valuable contribution to discussions on digital security, though it would benefit from greater transparency and a broader range of sources.

Accuracy

The article presents a factual narrative about hackers using Google's advertising platform to target Microsoft passwords. The claim that malicious ads appear on Google Search, designed to steal login information, aligns with established cybersecurity threats. However, the article lacks specific details, such as the number of affected accounts or the precise techniques used by hackers, which would enhance verifiability. The mention of Google's misrepresentation policy and its enforcement measures is accurate, though the effectiveness of these measures is not substantiated with concrete evidence. Overall, the piece is largely truthful but requires additional verification to confirm the full scope and impact of the attack.

Balance

The article primarily focuses on the technical aspects of the hacking incident, with a strong emphasis on the role of Google and Microsoft. It does not provide much perspective from the users affected or from independent cybersecurity experts, which could offer a more balanced view. The narrative leans towards discussing the actions and responses of Google and Malwarebytes, potentially overlooking other viewpoints, such as those from Microsoft or the general public. Including a broader range of perspectives would enhance the balance of the article.

Clarity

The article is generally clear and concise, effectively communicating the main points about the hacking threat. The language is straightforward, and the structure follows a logical progression from describing the attack to discussing mitigation strategies. However, some technical jargon related to cybersecurity might be challenging for general readers to fully understand without additional explanation. Simplifying complex terms or providing brief definitions could enhance overall comprehension.

Source quality

The article references credible sources, including Malwarebytes, a well-known cybersecurity company, and its senior director of research, Jérôme Segura. These sources are authoritative and add reliability to the claims made. However, the article could benefit from additional sources to provide a more comprehensive view, such as statements from Google or Microsoft representatives. The reliance on a single primary source limits the depth of the reporting but maintains a high level of credibility given Malwarebytes' expertise in cybersecurity.

Transparency

The article lacks transparency in certain areas, particularly regarding the methodology used to uncover the hacking attempts and the specific steps taken by Google to mitigate these threats. While it mentions that incidents have been reported to Google and that enforcement measures are in place, it does not elaborate on the effectiveness or the outcomes of these actions. Greater transparency about the investigation process and the response from involved parties would improve the article's clarity and trustworthiness.