Facebook’s Malvertising Problem

A couple of weeks ago, I posted briefly on my Facebook page about a rash of dangerous posts. Many people were clicking on Facebook content and then running afoul of scammy popups. This sort of thing is very common around the internet. But since that day, I feel like there is quite an increase in this threat, and all originating with Facebook. We need to talk about Facebook’s malvertising problem.

Malvertising is (yet another) tech portmanteau, blending together the words “malware” and “advertising”. Malvertising is when online ads and ad-networks are used and abused to infect your computers and bring tech-harm into your life. Wherever advertising occurs on the web, malvertising is possible. And right now, Facebook is where a lot of it is cropping up.

Facebook's Malvertising Problem

And Meta’s problem seems to be getting worse, not better. It started with posts about deceased celebrities and other tragic (fake) news. And right now, it’s ramping up into offers for free software and games. And the threat is changing, from fake virus alert messages to real computer infections. Sadly, Facebook can’t seem to get a tourniquet on things.

What to Know and Do

While malvertising happens on many websites, including LinkedIn and YouTube, most of the reports coming to my door right now come from Sponsored Posts on Facebook. So while my general advice is to run an ad-blocker for extra protection, my specific advice here is: Do not trust or click on any Sponsored Post you see on Facebook.

This is especially true of anything that looks salacious, too good to be true, or alarming. Tempting sponsored posts on Facebook can be traps and might lead to something entirely different. Even benign-looking sponsored posts can be dangerous. Reason being: bad actors are compromising and stealing Facebook accounts, and misusing them to spread viral content.

It gets even trickier, because Facebook is putting posts in your feed that may or may not say “Sponsored Post” in the corner. Some may be labelled “Suggested For You”. A few may simply want you to “Follow” them. And others may have no special marker or call-out. I have to prescribe a healthy amount of dubiousness for any unexpected or unfamiliar posts you encounter on Facebook!

Besides this BOLO, I can also recommend:

  • Run an ad blocker or a browser with built-in ad-blocking. Even the FBI recommends using an ad blocker!
  • Use the 3-dots button next to any Facebook to Hide or Block content that you don’t care for
  • Consider using the F.B. Purity extension
  • Do not call phone numbers on unexpected pop-ups. Also, think twice before giving out your email or phone number to anyone asking for it through Facebook
  • Use Facebook less!

Leave a Comment