*Google Chrome users now vulnerable to tricky new technique

TechViews News   …..

There is a new malware attack involving bait-and-switch websites that affects Google Chrome users.

This is how the malware scam works:

  1. You must be using the Chrome Browser on a Windows computer.
  2. You must live in an English speaking country. As of now it’s just the U.S., U.K., Canada and Australia that are being targeted.
  3. You are sent to the malicious bait-and-switch website through a search engine (Google, Bing, etc.).

If all of these factors are in place, you could fall victim to this attack.

Hackers are inserting JavaScript into unsecure websites. If you’re using the Chrome browser and click the link from a search engine result, the Java Script makes the website unreadable. You will see random symbols that look like gibberish that will make it totally unreadable.

By the time you realize the page is unreadable, a fraudulent Chrome pop-up appears. It says that “The ‘HoeflerText’ font wasn’t found,” which is why you can’t read the page.

You’re then asked to update the “Chrome Font Pack.”

That’s where they get you. If you click on the Update button on the pop-up message, the Java Script will infect your gadget with click-fraud adware.

Hidden ads will be loaded and clicked on automatically, all taking place in the background with the user unaware of what is happening.

Right now the click-fraud scripts are limited to fake adware. However, this scheme could easily change the malicious link into something worse, like encrypting ransomware. And, it could spread to other countries that speak a language other than English.

If you visit a site and it asks you to download a font update, do NOT do it!

Be Safe – Backup Your Data Regularly!

**********

And don’t forget to take advantage of our FREE subscription to the TechViews.org Newsletter. A must-read if you are interested in Internet Security.

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s