TechViews News …..
There is a new malware attack involving bait-and-switch websites that affects Google Chrome users.
This is how the malware scam works:
- You must be using the Chrome Browser on a Windows computer.
- You must live in an English speaking country. As of now it’s just the U.S., U.K., Canada and Australia that are being targeted.
- You are sent to the malicious bait-and-switch website through a search engine (Google, Bing, etc.).
If all of these factors are in place, you could fall victim to this attack.
By the time you realize the page is unreadable, a fraudulent Chrome pop-up appears. It says that “The ‘HoeflerText’ font wasn’t found,” which is why you can’t read the page.
You’re then asked to update the “Chrome Font Pack.”
That’s where they get you. If you click on the Update button on the pop-up message, the Java Script will infect your gadget with click-fraud adware.
Hidden ads will be loaded and clicked on automatically, all taking place in the background with the user unaware of what is happening.
Right now the click-fraud scripts are limited to fake adware. However, this scheme could easily change the malicious link into something worse, like encrypting ransomware. And, it could spread to other countries that speak a language other than English.
If you visit a site and it asks you to download a font update, do NOT do it!
Be Safe – Backup Your Data Regularly!
And don’t forget to take advantage of our FREE subscription to the TechViews.org Newsletter. A must-read if you are interested in Internet Security.