Adware
Definition
Adware — Meaning, Definition & Full Explanation
Adware is software that displays advertisements on your device screen and collects browsing data to serve targeted ads. It generates revenue by showing ads to users, either through impressions or pay-per-click payments, and may redirect searches or monitor websites visited. While some adware is legitimate and bundled transparently with free software, malicious variants can compromise privacy and device security.
What is Adware?
Adware is a category of software designed primarily to generate advertising revenue by displaying ads on a user's computer or mobile device. The term comes from "advertising-supported software." Unlike malware, legitimate adware is disclosed during installation and users can often control or disable it. However, the distinction between legitimate and malicious adware is not always clear.
Adware operates by tracking user behaviour—which websites you visit, what you search for, what products you view—and uses that data to display relevant advertisements. It may appear as pop-ups, banner ads, video ads, or full-screen advertisements. Some adware integrates into browsers as toolbars or extensions. The software earns money in two primary ways: each time a user views an ad (impression-based revenue) or when a user clicks on an ad (pay-per-click revenue).
Free • Daily Updates
Get 1 Banking Term Every Day on Telegram
Daily vocab cards, RBI policy updates & JAIIB/CAIIB exam tips — trusted by bankers and exam aspirants across India.
While most adware is merely intrusive and annoying rather than destructive, some variants cross into malicious territory by stealing sensitive information, slowing device performance, or redirecting traffic without consent. Users often install adware unknowingly when downloading free software, games, or browser extensions that bundle it as a condition of use.
How Adware Works
Adware operates through a multi-step process:
Installation: Adware is bundled with free software, utilities, or games. During installation, users may accept terms that allow the adware, often without fully reading the agreement.
Data collection: Once active, adware monitors user activity—websites visited, search queries, clicks, time spent on pages—and sometimes device location and hardware details.
Ad serving: Based on collected data, the adware displays targeted advertisements. Algorithms match user behaviour to relevant ads to increase click-through rates.
Revenue generation: The software developer earns money when users view ads (impression revenue) or click on them (pay-per-click revenue). Advertisers pay for placements.
Ongoing tracking: Adware remains resident on the device and continues collecting data for future ad targeting, even if the primary software is no longer actively used.
Legitimate adware is transparent: the user knowingly installs it, understands it displays ads, and can control or remove it. Examples include ad-supported free versions of software or free email clients.
Malicious adware hides its true nature, resists removal, collects excessive personal data without informed consent, displays deceptive ads, or redirects traffic without user action. It may download additional malware, disable security software, or expose the device to other threats.
Adware in Indian Banking
Adware poses a significant cybersecurity concern for Indian bank customers and financial institutions. The Reserve Bank of India (RBI) and Indian Computer Emergency Response Team (CERT-In) have issued advisories warning users against adware and similar malware that can compromise banking credentials and financial data.
Indian banks—including SBI, HDFC Bank, ICICI Bank, and others—advise customers to avoid downloading software from untrusted sources and to be cautious of phishing links disguised as ads. The RBI's cyber security guidelines for online banking emphasize that customers should use only official banking apps and websites, not compromised devices with adware.
Adware can interfere with digital payment systems like UPI (Unified Payments Interface) and NEFT transactions by injecting fake ads or redirecting users to fraudulent payment pages. Malicious adware targeting Indian users sometimes impersonates legitimate banking apps or e-commerce platforms to harvest OTPs and login credentials.
The Information Technology Act, 2000, and the Cybercrime Coordination Centre (I4C) framework address malware and adware as cybercrimes. Financial literacy campaigns by banks and the RBI encourage users to enable browser security, use antivirus software, and avoid clicking suspicious ads. For JAIIB candidates, understanding adware is relevant to the Digital Banking and IT modules, particularly regarding customer data protection and cybersecurity.
Practical Example
Priya, a 32-year-old IT professional in Bangalore, downloads a free PDF compression tool from a third-party website to reduce file sizes for work. During installation, she skips reading the terms and conditions. Within days, her browser is flooded with pop-up ads for online shopping, insurance, and cryptocurrency schemes. Her laptop slows noticeably.
Priya realizes the adware is collecting her browsing history. When she visits SBI's internet banking portal, she notices an ad banner that looks almost identical to SBI's login page, except the URL is slightly different—a classic phishing technique often used with adware. She avoids clicking it, suspecting a scam.
She removes the adware by uninstalling the PDF tool, clearing browser cache and cookies, and running a malware scan with antivirus software. She learns to download software only from official sources and to read installation agreements carefully. Going forward, she uses only the official banking app for transactions and enables two-factor authentication to prevent credential theft.
Adware vs Spyware
| Aspect | Adware | Spyware |
|---|---|---|
| Primary purpose | Display ads and generate revenue | Steal personal/financial data covertly |
| User visibility | Often visible (pop-ups, ads) | Typically hidden from user |
| Data collection | Browsing habits for ad targeting | Passwords, credit cards, messages, location |
| Removal ease | Often removable via settings or tools | Difficult to detect and remove |
Adware is revenue-driven and relatively visible, while spyware is deliberately concealed and theft-oriented. However, malicious adware can include spyware features. Both compromise privacy, but spyware poses greater financial and identity theft risk. Users should treat both as security threats and use reputable antivirus software to detect and remove them.
Key Takeaways
- Adware displays advertisements on devices and collects user browsing data to serve targeted ads, generating revenue through impressions or pay-per-click payments.
- Legitimate adware is disclosed during installation with user consent; malicious adware hides its nature and resists removal.
- The RBI advises Indian bank customers to avoid adware-infected devices when accessing online banking and to use only official banking apps and websites.
- Adware can be bundled with free software, games, browser extensions, and utilities, often installed unknowingly during setup.
- Malicious adware may perform phishing attacks, redirect to fraudulent banking pages, steal OTPs, or inject malware alongside advertisements.
- Users can prevent adware by downloading software only from official sources, reading installation agreements, and using reputable antivirus and anti-malware tools.
- Disabling pop-up controls in browsers, clearing cookies regularly, and enabling two-factor authentication on banking accounts reduce adware-related fraud risk.
- Unlike malware, most legitimate adware is not inherently destructive, but intrusive and irritating, while malicious variants pose serious security and financial threats.
Frequently Asked Questions
Q: Can adware steal my banking passwords and OTP?
A: Malicious adware can include keylogging or credential-stealing features that capture passwords and intercept SMS-based OTPs. This is why the RBI recommends using only official banking apps on clean, security-updated devices and enabling two-factor authentication to add an extra layer of protection.
Q: How do I know if my device has adware?
A: Signs include unexpected pop-up ads, slower device performance, unwanted browser extensions or toolbars, redirected search results, and ads appearing on websites that do not normally display them. Run a full antivirus or anti-malware scan, clear browser cache and cookies, and check installed programs for unfamiliar software.
Q: Is adware illegal in India?
A: Legitimate adware bundled transparently with free software is legal. However, malicious adware that conceals its nature, steals data, or enables fraud violates the Information Technology Act, 2000, and can be prosecuted as a cybercrime under relevant sections. Users should report suspected adware attacks to CERT-In or local cybercrime authorities.