Companies with well-known brand names should continuously monitor domain name registrations to identify potential typo-squatting attacks impersonating their brand name. The Uniform Domain-Name Dispute Resolution Policy can be used by companies to reclaim brand-infringing domains. If the infringing domain is being used to deliver malware, most domain registrars will honor a request for an immediate take-down of the offending domain. Binary Defense Counterintelligence services include monitoring of typo-squatting domain names and review of impersonating websites.
The best way to avoid falling victim to these types of attacks is to not click on ads when searching on Google for software downloads. Even if an ad seems interesting, the real search result should appear near the top of the list after the ad and is more reliable. After clicking a search result, double-check the final landing page and the domain name to be sure it is the real company website, not a misspelled version of the company name.
Source: https://www.bleepingcomputer.com/news/security/hackers-abuse-google-ads-to-spread-malware-in-legit-software/
