Cybersecurity researchers recently uncovered several malicious campaigns which used Google ads to disseminate malware like Gozi, RedLine, Vidar, Cobalt Strike, SectoRAT, and Royal Ransomware, masking them as legitimate applications such as 7-ZIP, VLC, OBS, Notepad++, CCleaner, TradingView, and Rufus. One particular piece of malware, called ‘LOBSHOT’, is especially dangerous as it contains a hidden hVNC which allows attackers to take control of infected Windows devices without detection.