Malvertising is the use of malicious or deceptive online advertising to deliver harmful content, redirect users, or support fraud.
Malvertising is the use of malicious or deceptive online advertising to deliver harmful content, redirect users, or support fraud. In plain language, it is when ordinary-looking web advertising becomes part of the threat path.
Malvertising matters because users may encounter it during normal browsing rather than during obviously suspicious activity. That makes it a useful delivery path for scams, harmful downloads, and credential-directed deception.
It also matters because it shows how security risk can flow through indirect third-party channels. A legitimate site may not be malicious itself, but unsafe advertising content shown through that site can still expose users.
Malvertising appears in browser security, endpoint protection, web filtering, user-awareness training, and threat-intelligence reporting. Teams connect it to Watering Hole Attack, Phishing, Sandboxing, Antivirus, and Threat Intelligence.
Security teams care about malvertising because it can turn routine web use into an entry point for broader compromise or fraud.
A user browsing a trusted news site clicks an ad that appears legitimate but actually routes to a deceptive landing page designed to pressure the user into downloading unsafe software or entering account information.
Malvertising is not the same as Phishing, even though both can use deception. Phishing is broader social-engineering communication. Malvertising specifically uses advertising channels.
It is also different from a Watering Hole Attack, which typically focuses on compromising or exploiting a site that a target group already trusts or visits frequently.