diff --git a/scripts/http-google-malware.nse b/scripts/http-google-malware.nse
index 917e75a55..dc5c4c221 100644
--- a/scripts/http-google-malware.nse
+++ b/scripts/http-google-malware.nse
@@ -77,6 +77,10 @@ action = function(host, port)
   local req = http.get_url(qry)
   stdnse.print_debug(2, "%s", qry)
 
+	if ( req.status == 403 ) then
+		return "[ERROR] 403 Forbidden (invalid API key?)"
+	end
+
   --The Safe Lookup API responds with a type when site is on the lists 
   if req.body then
     if http.response_contains(req, "malware") then