Home / Blog / Fake Software and Browser Update Scams Are Successfully Tricking Users

Fake Software and Browser Update Scams Are Successfully Tricking Users

Publication date: Nov 28, 2023

Last Published: Feb 08, 2024

Table of Contents
Read Time : 4 minutes

Have you ever received an urgent pop-up urging you to update your browser? Be cautious—it could be a fake browser update scam, a growing cyber threat that’s deceiving users into downloading harmful malware. In this article, we’ll explore the mechanics of these scams and provide practical tips to recognize and avoid them.

What are Fake Browser or Software Update Scams?

Fake browser update scams are a cunning form of cyber attack that masquerades as legitimate browser update prompts. These scams are designed to deceive users into downloading or filelessly loading malware, which can then cause data theft, system damage, or other malicious outcomes.

By exploiting the common advice given to end users to keep their software up-to-date, fake browser update scams scan successfully deceive even the most vigilant users. In fact, those who diligently install updates as soon as they are available may ironically have a higher chance of falling for such scams.

The methods used by cybercriminals behind fake browser update scams are evolving rapidly. A notable example is the ClearFake scam, detailed by security researcher Randy McEoin. This scam uses compromised WordPress sites to display browser-specific fake update alerts. Unsuspecting users who click the update button inadvertently download a trojan designed to steal information.

Download
DoD Contractor’s Guide to CMMC 2.0 Compliance

DOWNLOAD

The most recent version of the ClearFake scam now incorporates the use of the Binance Smart Chain (BSC) blockchain for storing malicious files. The use of blockchain technology makes it more challenging to combat these scams due to the blockchain’s immutable nature.

Since fake browser update scams can be used to distribute any malware, even Mac users are not safe. A recent example highlighting the risk to Mac users is the distribution of Atomic Stealer, also known as AMOS, through these scams. As reported by Malwarebytes, this malware was initially spread via malvertising but has now been seen being delivered through fake browser update scams.

How to Avoid Fake Browser Update Scams

While fake browser update scams online are responsible for a growing number of malware infections, steering clear of them isn’t as challenging as it might seem. The key is to trust only official update sources, which are:

  • Your web browser’s settings: The safest way to update your browser is through its built-in update feature because genuine updates appear within the browser’s settings or update section, not as random pop-ups or alerts on web pages.
  • Your operating system’s app store: If you’ve downloaded your web browser through your operating system’s official app store, like the Microsoft Store for Windows or the Mac App Store, then that’s also where you can find reliable updates.
  • Your web browser’s official website: While visiting the browser’s official website is a trusted method to download updates, it’s crucial to be cautious. Cybercriminals often set up phishing sites that mimic official pages. Always double-check the URL to confirm it’s the correct and official website.

You can follow these steps to check if your web browser really needs an update:

Microsoft Edge

  1. Open Edge and click on the three-dot menu in the top right corner.
  2. Select Settings.
  3. Click About Microsoft Edge at the bottom of the left panel. Here, you can see if Edge is up to date or if there are updates available.

Google Chrome

  1. Open Chrome and click on the three-dot menu in the top right corner.
  2. Go to Help and select About Google Chrome.
  3. Chrome will automatically check for updates and display your current version.

Mozilla Firefox

  1. Open Firefox and click on the menu button (three horizontal lines) in the top right corner.
  2. Choose Settings and navigate to the General tab.
  3. Scroll down until you see the Firefox Updates section. Firefox will check for updates and show if you are on the latest version.

Safari

  1. Open App Store.
  2. Navigate to the Updates section.
  3. Check for available Safari updates.

If your web browser’s update section doesn’t indicate that an update is available, then you’re already using the latest version regardless of what random web pages or pop-ups might claim.

Besides updating your web browser by following the steps above, you can significantly lower the risk of encountering fake browser update scams by installing an ad-blocker with pop-up blocking features. This tool helps to filter out unwanted pop-ups that could potentially be fake browser update scams.

Conclusion on Fake Browser and Software Update Scams

By masquerading as legitimate updates, fake browser update scams trick users into downloading malware, leading to potential data theft and system damage. However, as we’ve outlined, protecting yourself from these scams is manageable with the right knowledge and tools.

Contact us to discuss the IT security of your business. Our IT support & strategy services are tailored to meet the needs of small and medium-sized organizations in Washington D.C., Maryland, and Virginia.

SCHEDULE A CALL

Related Posts:

Latest eBook

6 Critical Cybersecurity Policies Every Organization Must Have

DOWNLOAD

Top Resources

Top technology strategy examples

Benefits of aligning IT with business strategy

Importance of security policy in an organization

Information security policy template (Free Download)

Change management in cyber security

Pros & cons of cybersecurity as a service (CSaaS)

Recent Posts

How can we help?

Contact us to get started.