create account

Fake browser updates spread malicious software by jujanen

View this thread on: hive.blogpeakd.comecency.com
technology · @jujanen ·
$0.11
Fake browser updates spread malicious software
This is how the fake update alerts can look. They are hard to distinguish from real goods.

![](https://steemitimages.com/DQmXgVYQApRcpPttjQWVw8EnoFmn9bKLPtpQFtkSiCP9vkr/image.png)

Malicious software is spread in many different ways, and now Malwarebytes security company reports a new outbreak of malware spread through fake browser updates.

The malware includes "banking" programs, which can be used to steal bank login information, as well as programs that can be used to transfer files or remotely control PCs.

The new malware campaign, which was first discovered in December, suggests that hackers enter code into legitimate web sites on the web. The code allows visitors to open a window with a message to update the browser when they visit the web pages, more specifically Chrome or Firefox, and in some cases Flash. These update windows should look completely authentic.

The dangerous programs are digitally signed and look legitimate. Photo: Malwarebytes
Starting with "lock file"
By clicking on the fake update window, you download a JavaScript file from another legitimate site, Dropbox shooting service. The JavaScript file is used by the hackers to look for - and avoid - virtual machines and so-called "sandbox" features. The latter is a security mechanism for isolating unknown and questionable programs.

After these checks have been completed, the "main load" is provided, which is an .exe file with the malicious program signed with an OS approved digital signature. If JavaScript programs find security mechanisms, the main program will not be delivered to the target.

According to Malwarebytes, the use of a "lock file" in the form of the JavaScript file gives the hackers great flexibility to confuse the activity and hide their "fingerprints", so it's about quite sophisticated bakers.

Websites that should have been infected with the malicious code that are behind the false update notices include, among other things, webpages published with the publishing tools WordPress, Joomla, and SquareSpace. Security companies do not know exactly how many websites are affected.
👍  , , ,
properties (23)
authorjujanen
permlinkfake-browser-updates-spread-malicious-software
categorytechnology
json_metadata{"tags":["technology","science","news","steemit","life"],"image":["https://steemitimages.com/DQmXgVYQApRcpPttjQWVw8EnoFmn9bKLPtpQFtkSiCP9vkr/image.png"],"app":"steemit/0.1","format":"markdown"}
created2018-04-17 21:29:57
last_update2018-04-17 21:29:57
depth0
children3
last_payout2018-04-24 21:29:57
cashout_time1969-12-31 23:59:59
total_payout_value0.105 HBD
curator_payout_value0.000 HBD
pending_payout_value0.000 HBD
promoted0.000 HBD
body_length2,099
author_reputation409,421,969,713
root_title"Fake browser updates spread malicious software"
beneficiaries[]
max_accepted_payout1,000,000.000 HBD
percent_hbd10,000
post_id50,640,926
net_rshares21,346,460,528
author_curate_reward""
vote details (4)
@attajuttjj ·
$0.09
I know there are lots of pop up like this that contain dangerous viruses  thank for post
👍  ,
properties (23)
authorattajuttjj
permlinkre-jujanen-fake-browser-updates-spread-malicious-software-20180418t075134498z
categorytechnology
json_metadata{"tags":["technology"],"app":"steemit/0.1"}
created2018-04-18 07:51:33
last_update2018-04-18 07:51:33
depth1
children2
last_payout2018-04-25 07:51:33
cashout_time1969-12-31 23:59:59
total_payout_value0.074 HBD
curator_payout_value0.015 HBD
pending_payout_value0.000 HBD
promoted0.000 HBD
body_length88
author_reputation1,450,650,803,206
root_title"Fake browser updates spread malicious software"
beneficiaries[]
max_accepted_payout1,000,000.000 HBD
percent_hbd10,000
post_id50,713,454
net_rshares17,828,110,257
author_curate_reward""
vote details (2)
@jujanen ·
$0.10
Yes indeed, thank you to :)
👍  
properties (23)
authorjujanen
permlinkre-attajuttjj-re-jujanen-fake-browser-updates-spread-malicious-software-20180419t153913235z
categorytechnology
json_metadata{"tags":["technology"],"app":"steemit/0.1"}
created2018-04-19 15:39:12
last_update2018-04-19 15:39:12
depth2
children1
last_payout2018-04-26 15:39:12
cashout_time1969-12-31 23:59:59
total_payout_value0.095 HBD
curator_payout_value0.000 HBD
pending_payout_value0.000 HBD
promoted0.000 HBD
body_length27
author_reputation409,421,969,713
root_title"Fake browser updates spread malicious software"
beneficiaries[]
max_accepted_payout1,000,000.000 HBD
percent_hbd10,000
post_id50,959,352
net_rshares17,622,507,493
author_curate_reward""
vote details (1)
@attajuttjj · (edited)
I got computer virus that destroys my hard dick last time
👍  
properties (23)
authorattajuttjj
permlinkre-jujanen-re-attajuttjj-re-jujanen-fake-browser-updates-spread-malicious-software-20180420t221911768z
categorytechnology
json_metadata{"tags":["technology"],"app":"steemit/0.1"}
created2018-04-20 22:19:09
last_update2018-04-20 22:19:48
depth3
children0
last_payout2018-04-27 22:19:09
cashout_time1969-12-31 23:59:59
total_payout_value0.000 HBD
curator_payout_value0.000 HBD
pending_payout_value0.000 HBD
promoted0.000 HBD
body_length57
author_reputation1,450,650,803,206
root_title"Fake browser updates spread malicious software"
beneficiaries[]
max_accepted_payout1,000,000.000 HBD
percent_hbd10,000
post_id51,200,855
net_rshares430,009,692
author_curate_reward""
vote details (1)
Help/Feedback