As such, you should never install any update that appears in a pop-up and this is especially true with Google Chrome. How to stay safe from malware spread through fake updatesįake updates are one the easiest ways hackers trick victims into infecting their own devices with malware. To make matters worse, the malware even stops Windows Update which could make your PC vulnerable to other malware strains and viruses. It also excludes itself from Windows Defender and as a result, Microsoft’s antivirus software won’t know to remove it from your system. At the same time though, it could also put additional stress on your CPU, GPU and other components which would then need to be replaced sooner rather than later.Īnother interesting thing about this malware campaign is that the crypto miner it installs establishes persistence on a victim’s PC by adding scheduled tasks and performing Registry modifications. The danger with having a crypto miner like this one installed on your computer is that your system will run slower since it’s actually doing quite a lot of work in the background. Unsuspecting users that fall for this trick end up installing a Monero miner on their PC instead of a legitimate Chrome update. From here, the scripts automatically download a ZIP file named “release.zip” which is disguised as a Chrome update. If a targeted user does visit one of these hacked sites, the scripts display a fake Google Chrome error screen that says they need to install an automatic update to continue to the site. The hackers behind this campaign are using the Pinana IPFS (InterPlanetary File System) service to deliver these additional scripts as it hides the origin of the server hosting the files which makes blocking them difficult.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |