Google's 2025 Gemini AI Initiative: A New Era in Combating Malvertising

Q: How does Gemini AI enhance ad detection?

Gemini AI analyzes extensive datasets, including advertiser behavior and campaign patterns, to identify and block malicious ads before they reach users.

Q: What impact did Gemini AI have on ad safety in 2025?

In 2025, Gemini AI contributed to the blocking or removal of 8.3 billion ads and the suspension of 24.9 million advertiser accounts, significantly reducing malvertising incidents.

Discover how Google's integration of Gemini AI in 2025 led to the removal of billions of malicious ads, marking a significant advancement in digital ad safety.

Published: April 16, 2026

Share this on:

Executive Summary

In 2025, Google intensified its efforts to combat malvertising by integrating its Gemini AI models into ad detection systems. This initiative led to the blocking or removal of 8.3 billion ads and the suspension of 24.9 million advertiser accounts, including 602 million ads linked to scams. Malvertising campaigns often impersonate legitimate brands to distribute malware or lead users to phishing sites. By leveraging Gemini AI, Google enhanced its ability to analyze vast datasets, including advertiser behavior and campaign patterns, to identify and block malicious ads before they reach users. (apnews.com)

The urgency of addressing malvertising has grown as cybercriminals increasingly use generative AI to create deceptive ads at scale. Google's proactive measures with Gemini AI have not only improved ad filtering efficiency but also reduced incorrect advertiser suspensions by 80%. This underscores the critical need for advanced AI-driven defenses to maintain the integrity of digital advertising platforms. (apnews.com)

Why This Matters Now

The integration of AI in both offensive and defensive cyber operations highlights an escalating arms race in digital security. As threat actors leverage generative AI to craft sophisticated malvertising campaigns, platforms must adopt equally advanced AI solutions to detect and mitigate these threats effectively. Google's deployment of Gemini AI exemplifies the necessity for continuous innovation in cybersecurity to protect users and maintain trust in digital ecosystems.

Attack Path Analysis

Attackers leveraged malvertising to deliver malware through legitimate ad networks, leading to initial compromise. Once inside, they escalated privileges to gain broader access. They then moved laterally within the network to identify valuable data. Established command and control channels to exfiltrate data. Exfiltrated sensitive information to external servers. Finally, they deployed ransomware to disrupt operations and demand payment.

Kill Chain Progression

Initial Compromise

High

Privilege Escalation

Mediuminferred

Lateral Movement

Mediuminferred

Command & Control

Mediuminferred

Exfiltration

Mediuminferred

Impact

Mediuminferred

Initial Compromise

Description

Attackers used malvertising to deliver malware through legitimate ad networks, compromising user systems upon ad interaction.

Confidence:

High

MITRE ATT&CK® Techniques

Initial Access

T1566.001

Spearphishing Attachment

Command and Control

T1071.001

Web Protocols

Execution

T1204.001

Malicious Link

Defense Evasion

T1078

Valid Accounts

Persistence

T1568.002

Domain Trust Modification

Execution

T1059.001

PowerShell

Defense Evasion

T1027

Obfuscated Files or Information

Defense Evasion

T1562.001

Disable or Modify Tools

Potential Compliance Exposure

Mapping incident impact across multiple compliance frameworks.

PCI DSS 4.0 – Malicious Software Prevention

Control ID: 6.4.3

The incident highlights the need for robust mechanisms to prevent, detect, and respond to malicious software, as attackers used malvertising to distribute malware.

NYDFS 23 NYCRR 500 – Training and Monitoring

Control ID: 500.14

The use of deceptive ads to impersonate legitimate brands underscores the necessity for continuous monitoring and employee training to recognize and mitigate such threats.

DORA – ICT Risk Management Framework

Control ID: Article 5

The exploitation of advertising platforms for malicious purposes indicates a need for comprehensive ICT risk management to address such vulnerabilities.

CISA ZTMM 2.0 – Identity and Access Management

Control ID: 3.1

The incident demonstrates the importance of stringent identity and access management controls to prevent unauthorized access through deceptive means.

NIS2 Directive – Cybersecurity Risk Management Measures

Control ID: Article 21

The attack emphasizes the need for entities to implement appropriate cybersecurity risk management measures to protect against evolving threats like malvertising.

Sector Implications

Industry-specific impact of the vulnerabilities, including operational, regulatory, and cloud security risks.

Marketing/Advertising/Sales

Direct exposure to malvertising campaigns threatens advertising platform integrity, requiring advanced AI detection capabilities and real-time policy enforcement to prevent malicious ad distribution.

Computer Software/Engineering

High risk from malicious ads impersonating legitimate software downloads like Google Authenticator, requiring enhanced egress security and threat detection for software distribution channels.

Financial Services

Targeted by cryptocurrency wallet drainer campaigns and phishing attacks through malvertising, necessitating zero trust segmentation and anomaly detection for customer protection.

Internet

Platform providers face scaled AI-generated deceptive content requiring multicloud visibility, inline IPS capabilities, and cloud-native security fabric for real-time threat mitigation.

Sources

Google expands Gemini AI use to fight malicious ads on its platformhttps://www.bleepingcomputer.com/news/google/google-expands-gemini-ai-use-to-fight-malicious-ads-on-its-platform/
Verified

Google's 2025 Ads Safety Reporthttps://blog.google/products/ads-commerce/2025-ads-safety-report/

Verified

Google Trust & Safety publishes May 2025 scam advisoryhttps://blog.google/innovation-and-ai/technology/safety-security/fraud-and-scams-advisory-may-2025/

Verified

Frequently Asked Questions

Malvertising involves embedding malicious code within online advertisements to distribute malware or direct users to phishing sites.

Cloud Native Security Fabric Mitigations and ControlsCNSF

Aviatrix Zero Trust CNSF is pertinent to this incident as it embeds security directly into the cloud fabric, potentially limiting attackers' ability to move laterally and exfiltrate data undetected.

Initial Compromise

Control: Cloud Native Security Fabric (CNSF)

Mitigation: The CNSF may have limited the malware's ability to communicate with command and control servers, reducing the attacker's control over compromised systems.

Privilege Escalation

Control: Zero Trust Segmentation

Mitigation: Zero Trust Segmentation could have limited the attacker's ability to access critical systems, reducing the scope of potential damage.

Lateral Movement

Control: East-West Traffic Security

Mitigation: East-West Traffic Security could have restricted unauthorized lateral movement, reducing the attacker's ability to access additional systems.

Command & Control

Control: Multicloud Visibility & Control

Mitigation: Multicloud Visibility & Control could have identified and restricted unauthorized command and control communications, reducing the attacker's ability to manage compromised systems.

Exfiltration

Control: Egress Security & Policy Enforcement

Mitigation: Egress Security & Policy Enforcement could have limited unauthorized data exfiltration, reducing the amount of sensitive information accessed by attackers.

Impact (Mitigations)

While CNSF controls may have constrained earlier stages of the attack, the deployment of ransomware could still impact systems within the compromised segment, potentially disrupting operations.

Impact at a Glance

Affected Business Functions

Online Advertising
Brand Reputation Management
User Trust and Safety

Operational Disruption

Estimated downtime: N/A

Financial Impact

Estimated loss: N/A

Data Exposure

n/a

Recommended Actions

• Implement Inline IPS (Suricata) to detect and block malicious payloads delivered through malvertising.
• Deploy Zero Trust Segmentation to limit lateral movement and contain potential breaches.
• Utilize East-West Traffic Security to monitor and control internal network communications.
• Enforce Egress Security & Policy Enforcement to prevent unauthorized data exfiltration.
• Enhance Threat Detection & Anomaly Response capabilities to identify and respond to suspicious activities promptly.

Secure the Paths Between Cloud Workloads

A cloud-native security fabric that enforces Zero Trust across workload communication—reducing attack paths, compliance risk, and operational complexity.

Stop Advanced Threats Get a Free Workload Attack Path Assessment Under Active Attack?

Google's 2025 Gemini AI Initiative: A New Era in Combating Malvertising

Executive Summary

Why This Matters Now

Attack Path Analysis

Kill Chain Progression

Initial Compromise

Description

MITRE ATT&CK® Techniques

Spearphishing Attachment

Web Protocols

Malicious Link

Valid Accounts

Domain Trust Modification

PowerShell

Obfuscated Files or Information

Disable or Modify Tools

Potential Compliance Exposure

PCI DSS 4.0 – Malicious Software Prevention

NYDFS 23 NYCRR 500 – Training and Monitoring

DORA – ICT Risk Management Framework

CISA ZTMM 2.0 – Identity and Access Management

NIS2 Directive – Cybersecurity Risk Management Measures

Sector Implications

Marketing/Advertising/Sales

Computer Software/Engineering

Financial Services

Internet

Sources

Frequently Asked Questions

Cloud Native Security Fabric Mitigations and ControlsCNSF

Impact at a Glance

Affected Business Functions

Recommended Actions

Key Takeaways & Next Steps

Secure the Paths Between Cloud Workloads