GovInfoSecurity
@prajeetspeaks) • May 24, 2021
Fake update notifications download malware. (Source: McAfee)
Scammers are increasingly using Windows Push Notifications to impersonate legitimate alerts as a first step toward installing malicious Windows applications to harvest user and system information, according to a global report by McAfee. Browser push notifications can highly resemble Windows system notifications, the report states. Scammers are abusing push notifications to trick users into taking action.
In the report, researchers describe the social engineering tactics used to trick victims into installing a fake Windows Defender update.
Rather than sending out emails for a phishing campaign, attackers hack into pop-up notifications and use a fake one that disguises itself by using the McAfee name and logo to inform the victim about what is opurpirted to be a Windows Defender Update.
Windows Push Notifications Used for Fraud bankinfosecurity.com - get the latest breaking news, showbiz & celebrity photos, sport news & rumours, viral videos and top stories from bankinfosecurity.com Daily Mail and Mail on Sunday newspapers.