@sans_isc @malware_traffic I'm finding these write ups really fascinating. To protect internal users we can add ad-block to our managed browsers. But what about protecting our customers? What can we do, from a brand/company perspective, to protect against this?

If I'm AnyDesk/Teamviewer, I'd be pissed right now. Not only did Google allow them to divert customers away from the company, but it also allowed them to be infected with some malware impersonating our product

The only solution I can think of is we would have to rely on tooling by Google to alert/block display URLs from other AdSense accounts using our domains, but I'm unaware of any tooling that exists like that

As it stands, Google knows this is happening, and has chosen to allow it to continue