After users click on the fake ad, they're redirected multiple times until finally landing on a fake site for Google Authenticator hosted on GitHub. If people aren't paying close attention ...