We use your sign-up to provide content in ways you’ve consented to and to improve our understanding of you. This may include adverts from us and 3rd parties based on our understanding. You can unsubscribe at any time. More info
Anyone with a Windows 10 or Windows 11-powered PC needs to be aware of a shock new tactic being used by cyber criminals. According to security experts from Malwarebytes Lab, hackers have found a sneaky way to infiltrate web browsers – via the popular News Feed function – with Windows users being targeted by a fake support scam.
If tricked, the browser instantly displays a pop-up window showing an urgent warning that claims to be from Microsoft’s Defender Security Center.
The message states that access to the PC has been blocked due to security issues with users then urged to call a number to solve the glitch. Anyone phoning the fake hotline will then be put through to a scammer who will try and take a payment to fix the issues.
Of course, there is no problem in the first place with the pop-up window simply being used to scare victims and get them to hand over their hard-earned cash.
The attack is currently targeting those who use the Microsoft Edge web browser. This software has exploded in popularity over the past year so this is a serious issue that could affect millions of users.
Microsoft introduces Windows 11 in 2021
Speaking about the attack, Malwarebytes Lab, said: “We have tracked and observed a malvertising campaign on the Microsoft Edge News Feed used to redirect victims to tech support scam pages. The scheme is simple and relies on threat actors inserting their advertisements on the Edge home page and trying to lure users with shocking or bizarre stories.
This scheme is meant to trick innocent users with fake browser locker pages, very well known and used by tech support scammers.”
If you use Edge and spot any strange pop-up windows appearing be alert as it’s probably a scam. News of this attack comes just days after Microsoft issued another serious warning.
The Redmond firm has released an important Windows update – that all users should download – after finding a flaw in its popular operating systems that could give cyber criminals complete control of any PC.
The flaw, called CVE-2022-37969, holds a severity score of 7.8 with Microsoft confirming that “an attacker who successfully exploited this vulnerability could gain SYSTEM privileges.”
To make matters worse, the bug has been stamped with an official zero-day warning. That means the bug is already known to criminals and is being used right now to infect and attack PCs.
Here’s how to make sure your PC is up to date
In Windows 10 and Windows 11, you decide when and how to get the latest updates to keep your device running smoothly and securely. To manage your options and see available updates, select Check for Windows updates. Or select the Start button, and then go to Settings > Update & Security > Windows Update.
Source: Read Full Article