Wish Tutanota pushed out better information here. This is just a high-level overview.
Real mitigations include removing the telematics modules in the vehicle, often known as the Data Communications Module (DCM). Also replacing the default radio with a 3rd party radio can dispense with the embedded secondary LTE modem, GPS, hotspot, WiFi, etc.
tl;dr, radio replacement and removing the telematics module (often above the radio)
Google is misleading people with their advertisements and redirecting users to malicious locations. This has resulted in several hundred intrusions that led to ransomware deployment.
Google is taking a cut in organized crime and malware distribution. How this is "okay" is beyond me.
I am not calling for censorship in any way, and they certainly shouldn't redact/censor results. But, they are running a criminal operation with the displayed advertisements and lying about the location. The average users (especially elderly) are being harmed by Google advertisements.
Many such cases. Google is responsible for a wide variety of what security researchers refer to as "malvertising."
This often leads to intrusions/breaches. The initial payload drops, the actor deploys a C2 framework (often Cobalt Strike), pivots laterally, then drops ransomware binaries for encryption. If I had to put a number on the amount of intrusions caused by Google PPC ads, it would be an upwards of 500.
This has been a growing problem since last November, and Google is effectively taking its cut from malware distributors and aiding/abetting organized crime.
Canonical in particular has gravely committed this offense.
In an instance for one of their engineering positions, they requested ~40 hours worth of work via a combination of system administration, development in C/Golang, and uploading to a git server where they could review the work.
At the time, I was a full-time student and declined given time constraints.
If you read the story, he was caught off guard. The fraudster dropped information on him while vulnerable, perhaps acting off a tip. They capitalize on lapses of reason and judgement.
I would call myself an expert in scams / cons with online activity, however I myself was recently scammed during the holiday season. Physically rather than digitally though with one of those fake gold cons employing a variety of different tactics. They caught me off guard in a variety of ways by being parked off a rural Country highway early in the morning (6 am). I pulled over to see if they needed any help and the guy instantly approached my car where I was even more flustered. Point is, scams all seem ridiculous after the fact, but these people are not fools when it comes to social engineering, applying pressure, and taking advantage of the holes in the swiss cheese.
Many variables would've had me on high alert in my situation, but even being the "expert" I am, I fell victim. It's always easy to look back after the fact, or even after you have a few seconds to breathe. They play on immediacy / urgency often, and intentionally try to paralyze you in a sense.
Real mitigations include removing the telematics modules in the vehicle, often known as the Data Communications Module (DCM). Also replacing the default radio with a 3rd party radio can dispense with the embedded secondary LTE modem, GPS, hotspot, WiFi, etc.
tl;dr, radio replacement and removing the telematics module (often above the radio)
reply