Fake BBC and Guardian Ads on Reddit Push AI Scams

Scammers are buying Reddit ads impersonating major news outlets to promote fake AI investment schemes and steal user funds.

A new wave of malicious advertising is targeting Reddit users in the U.S. and Europe. Security researchers at Bitdefender Labs have identified a sophisticated campaign using Reddit’s “promoted posts” to impersonate trusted news organizations, including the BBC, the Financial Times, and The Guardian. These fake ads are designed to lure people into fraudulent artificial intelligence investment schemes. The attackers operate with a high degree of agility, using short-lived web domains that are quickly rotated to make tracking and blocking them extremely difficult. This tactic allows the scam to persist despite platform moderation efforts, continuously exposing new users to financial risk. The ads leverage the credibility of established media brands to build a false sense of security, making the scam more effective at deceiving its targets.

This campaign highlights a significant brand safety and security challenge for businesses. For founders and CTOs, it serves as a stark reminder that major advertising platforms can be exploited to tarnish a brand's reputation through impersonation. Your company’s name could be the next one used to lend credibility to a scam, or your own legitimate ads could appear alongside this fraudulent content, creating a negative association. For IT and security teams, this represents an evolution in social engineering tactics. The combination of a trusted platform, impersonated brands, and a trending topic like AI creates a potent lure that can bypass traditional security awareness training. It underscores the need for continuous education on modern phishing vectors that extend beyond email into social media and advertising ecosystems.

This issue is not unique to Reddit but reflects a broader industry problem where the scale and speed of digital advertising make thorough vetting a constant battle. The use of AI as a theme is particularly strategic, preying on public interest and the fear of missing out on a new technological frontier. As attackers refine these methods, platforms and security vendors face increasing pressure to develop more dynamic and intelligent detection systems. Businesses should monitor for unauthorized use of their brand in online ads and ensure their teams are aware of the risks associated with clicking on promoted content, even when it appears to come from a reliable source.