Security researchers have reported observing a threat actor using widespread, ongoing Google Ads campaigns to spread malware, steal passwords, and breach networks for ransomware attacks. It’s been reported that the ads feature websites for popular programs, like LightShot, Rufus, 7-Zip, FileZilla, LibreOffice, AnyDesk, Awesome Miner, TradingView, WinRAR, and VLC.

The advice is to use caution with ads for these products, but Google has said that it is enforcing robust policies related to this issue, has reviewed the ads in question and has removed them.