Light Dark
February 8, 2016 By Larry Loeb 2 min read

Google recently announced on its Online Security Blog that its safe browsing concept was being extended to what it called “deceptive embedded content, like social engineering ads.”

Google defined embedded content classified as social engineering as content that acts, looks and feels like a trusted entity. Examples of trusted entities would be a device or browser, or the legitimate website.

This classification also extends to content that would try to trick users into doing something they would only do for a trusted entity, which might include sharing a password, supplying personal information or calling tech support.

Google Chrome and Social Engineering

The Chrome update, which was pushed out Feb. 3, is an extension of Google’s default safe browsing feature. Mashable noted that it can be turned on by checking a box located in the advanced privacy settings of the browser.

When Google encounters a site it suspects is hosting social engineering ads, it will display a red warning page. According to Google’s security blog, the warning reads: “Attackers on [the site] may trick you into doing something dangerous like installing software or revealing your personal information (for example, passwords, phone numbers or credit cards).”

Webmasters whose sites are flagged by Chrome have ways to dispute it, outlined by Google. Any deceptive content identified must be removed in order to remove the warnings; this includes any third-party resources that may be at fault. If it is a third-party problem such as an issue with a rotating ad, Google suggested multiple refreshes to aid in the identification process.

Safe Browsing Warnings Are Just the Beginning

This isn’t the first time Google has acted against deceptive websites. Last February, it announced a policy warning against programs that piggyback on other installations that automatically change a browser’s home page.

Google’s self-interest in making the open Web as usable as possible no doubt originates from its attempt to keep users using the Google search products. Regardless of the company’s motives, this particular effort will likely be welcomed by any user of the Web.

 |  |  | 
Larry Loeb
Principal, PBC Enterprises

More from

January 30, 2025

When ransomware kills: Attacks on healthcare facilities

4 min read - As ransomware attacks continue to escalate, their toll is often measured in data loss and financial strain. But what about the loss of human life? Nowhere is the ransomware threat more acute than in the healthcare sector, where patients’ lives are literally on the line.Since 2015, there has been a staggering increase in ransomware attacks on healthcare facilities. And the impacts are severe: Diverted emergency services, delayed critical treatments and even fatalities. Meanwhile, the pledge some ransomware groups made during…

January 29, 2025

AI and cloud vulnerabilities aren’t the only threats facing CISOs today

6 min read - With cloud infrastructure and, more recently, artificial intelligence (AI) systems becoming prime targets for attackers, security leaders are laser-focused on defending these high-profile areas. They’re right to do so, too, as cyber criminals turn to new and emerging technologies to launch and scale ever more sophisticated attacks.However, this heightened attention to emerging threats makes it easy to overlook traditional attack vectors, such as human-driven social engineering and vulnerabilities in physical security.As adversaries exploit an ever-wider range of potential entry points…

January 28, 2025

4 trends in software supply chain security

4 min read - Some of the biggest and most infamous cyberattacks of the past decade were caused by a security breakdown in the software supply chain. SolarWinds was probably the most well-known, but it was not alone. Incidents against companies like Equifax and tools like MOVEit also wreaked havoc for organizations and customers whose sensitive information was compromised.Expect to see more software supply chain attacks moving forward. According to ReversingLabs' The State of Software Supply Chain Security 2024 study, attacks against the software…

Topic updates

 Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today
© 2025 IBM Contact Privacy Terms of use Accessibility Cookie Preferences
Sponsored by si-icon-eightbarfeature