Cybersecurity experts at Proofpoint have issued a warning about a new scam targeting Google Chrome users. The scam involves receiving pop-up notifications claiming that an error has occurred while trying to open a document or web page. The pop-up prompts users to copy and paste text into a PowerShell terminal or Windows’ Run dialog box.
The attack, which first appeared in March, is said to be the work of spam distributor TA571 and ClearFake. These groups are known for their high-volume spam campaigns and fake update threats. The malware installed through this scam focuses on credential theft and fraudulent cryptocurrency transactions.
Proofpoint recommends that users never share personal or financial information with unknown individuals. They should also avoid clicking on links or opening attachments from unfamiliar senders in emails, text messages, or on social media. Users should look out for spelling and grammatical errors in confirmation emails, as well as inaccurate domain names, as these could be indicators of a scam.
To protect against such attacks, users should exercise caution when ordering from unfamiliar websites and only communicate with organizations through official channels on their websites. Passwords should not be shared with others, and it is advisable to change them regularly. Using a password manager can help safeguard personal information from theft.
Users should also be wary of unexpected emails or phone calls and be vigilant when it comes to online interactions. By following these precautions, users can reduce the risk of falling victim to scams targeting Google Chrome users.
Article Source
https://nypost.com/2024/06/25/tech/clever-copy-and-paste-scam-targets-google-chrome-users-cybersecurity-experts/
