Google serves up fake AMD driver downloads in search results

Beware malware served up in Google ads. Again...

Beware malware served up in Google ads. Again...

Google is once more serving up malicious websites in more prominent positions than legitimate pages in its search results. This time around it’s within search results for some users looking for AMD driver downloads according to a Reddit user on the popular PC Master Race subreddit (via PC World).

The link in question wasn’t part of the search results proper but Google’s context-aware curated ad links which can appear above search results. We have been unable to replicate the results, but can confirm the malicious website shown in the Reddit poster’s search results is real enough.

The site mimics AMD’s official website design and branding, including the use of AMD IP, and links to an extremely dubious .exe file for download under a heading of “Auto-Detect and Install Driver Updates for AMD Radeon Series Graphics and Ryzen Chipsets”.

Needless to say, we absolutely do not recommend you navigate to the website, let alone download the .exe file.

This is far from the first time something like this has happened, what with phishing scammers buying Google ad slots to impersonate Whatsapp last month and a fake EVGA website created around the Memorial Day sales event given more prominence than the official page in search results last year. But it’s particularly disappointing to see Google linking to what is clearly not a legitimate website and thus facilitating the distribution of malware at the top of a search results page.

While the malicious nature of the website ought to have been obvious to Google, at a glance it could well be convincing enough for casual PC users. It’s fully branded up with AMD logos. It even has a few functioning hyperlinks that send users to legitimate parts of AMD’s official website.

(Image credit: Future)

Of course, it doesn’t bare close inspection, with most of the links redirecting in circular fashion to the same highly dubious URL. But it’s not at all hard to imagine someone landing on the page, seeing the nice big ‘download’ and firing away.

We’re not sure what nasties are contained in the malicious .exe file. But hopefully you’ll forgive us for not sacrificing a Windows installation to find out. 

About Post Author

See author's posts

Related

Today’s Wordle answer for Sunday, September 22

Today’s Wordle answer for Sunday, September 22

September 21, 2024
Dawn of War 1 and 2 have been re-released as anniversary editions including all the DLC

Dawn of War 1 and 2 have been re-released as anniversary editions including all the DLC

September 21, 2024

You may have missed

How to fix NBA 2K Error Code 727e66ac

How to fix NBA 2K Error Code 727e66ac

September 21, 2024
How to complete the Possessor quest in Escape from Tarkov

How to complete the Possessor quest in Escape from Tarkov

September 21, 2024
Today’s Wordle answer for Sunday, September 22

Today’s Wordle answer for Sunday, September 22

September 21, 2024
Best Douyin outfit ideas for Dress to Impress Roblox

Best Douyin outfit ideas for Dress to Impress Roblox

September 21, 2024
God of War Ragnarok’s PC launch falls flat as PSN requirement turns gamers away

God of War Ragnarok’s PC launch falls flat as PSN requirement turns gamers away

September 21, 2024
Rust players decry ‘scummy’ decision to change ‘P2W’ community cosmetic just 2 days after its launch

Rust players decry ‘scummy’ decision to change ‘P2W’ community cosmetic just 2 days after its launch

September 21, 2024