Drive-By Download

A drive-by download refers to potentially harmful software code that is installed on a person’s computer without the user needing to first accept or even be made aware of the software installation.

Drive-by downloads are a form of malware typically found on compromised web pages. By simply “driving by,” or visiting the web page, the drive-by download begins to download and is then installed in the background on the computer or mobile device without alerting the user.

How Drive-By Downloads Do Their Damage

Drive-by download hackers get users to visit their compromised web pages through web links on other web pages that appear to be normal and authentic. They also hide links to their drive-by download web pages in seemingly normal e-mails, text messages, and social media posts designed to attract users to drive-by download-infected web page content that looks authentic and uncompromised.

Drive-by downloads generally take advantage of security flaw exploits on browsers, apps, or operating systems that are out of date and haven’t been patched for the security flaws. As a result, keeping your operating system and its apps up to date helps minimize the risk of a drive-by download attack.

Additional Tips for Avoiding Drive-By Download Attacks

Security experts also recommend installing a high-quality internet security tool to help identify and prevent drive-by download attacks on your computer. Another recommendation is to avoid dubious links and offers that appear to be too good to be true, particularly when it comes to getting free content that you would normally have to pay for (pirated software or music, for example).

Drive-By Download Malware Infographic from Sophos
Infographic courtesy of Sophos (Click for larger image)

Forrest Stroud
Forrest Stroud
Forrest is a writer for Webopedia. Experienced, entrepreneurial, and well-rounded, he has 15+ years covering technology, business software, website design, programming, and more.
Get the Free Newsletter
Subscribe to Daily Tech Insider for top news, trends & analysis
This email address is invalid.
Get the Free Newsletter
Subscribe to Daily Tech Insider for top news, trends & analysis
This email address is invalid.

Related Articles

Embedded Analytics

Embedded analytics brings self-service business intelligence to everyday application users.

HRIS

Human resources information system (HRIS) solutions help businesses manage multiple facets of their workforce operations. They provide a central platform for human resources professionals...

Complete List of Cybersecurity Acronyms

Cybersecurity news and best practices are full of acronyms and abbreviations. Without understanding what each one means, it's difficult to comprehend the significance of...

Human Resources Management System

A Human Resources Management System (HRMS) is a software application that supports many functions of a company's Human Resources department, including benefits administration, payroll,...

ScalaHosting

ScalaHosting is a leading managed hosting provider that offers secure, scalable, and affordable...

HRIS

Human resources information system (HRIS) solutions help businesses manage multiple facets of their...

Best Managed Service Providers...

In today's business world, managed services are more critical than ever. They can...