A drive-by download is a cyberattack where malicious code executes and installs onto your computer, phone, or tablet without any action from you beyond visiting a website. Unlike traditional downloads, you do not click an obvious download button or agree to install anything. The malware installs in the background, often exploiting security vulnerabilities in your browser, browser plugins, or operating system.
Common delivery methods include:
- Compromised websites that have been hacked and injected with malicious code
- Legitimate websites that unknowingly serve infected advertisements through ad networks
- Exploit kits hidden in web pages that scan for security flaws in your browser
- Malicious redirects that send you to dangerous sites without your consent
Drive-by downloads pose serious risks. Installed malware can steal personal information, monitor your browsing, hijack your browser, or encrypt your files for ransom. You may not notice anything wrong for weeks or months, during which criminals exploit your device.
To protect yourself, keep your operating system and browser fully updated, as patches close vulnerabilities that drive-by attacks exploit. Install reputable antivirus software that detects and blocks malicious sites. Consider disabling plugins like Flash or Java, which are common attack vectors. Use a content blocker to prevent malicious advertisements. Browse cautiously, especially on unfamiliar websites, and avoid clicking suspicious links.
If you suspect a drive-by download has occurred, run a full system scan with trusted antivirus software, change your passwords, and monitor accounts for fraudulent activity. Recovery sometimes requires professional help if malware deeply infects your system.