Big Google Chrome Scam: Hackers Will Steal Your Money

Does Google Chrome ask you to copy and paste code? Be careful, it might be one Fraud to steal money.

An online security company discovered A new technique that can turn into money-stealing malware. However, fraud can be easily detected and avoided.

Researchers observed this technique in March 2024
The Online security firm Proofpoint flagged the ongoing campaign, which mimics the official popup window and guides the user with scripts. By following these steps, he has the ability to steal money. Proofpoint researchers have identified an increasingly popular technique that uses unique mechanics to run PowerShell and install malware.

“The company says it has observed an increase in a technique that leverages personal social engineering, which infects users with malware to copy and paste malicious PowerShell scripts.”

What is this stealing malware?

Whether the initial campaign is launched via malspam or delivered via a web browser, the technique is similar, experts warn. Users are presented with a pop-up text box indicating an error when attempting to open a document or web page, and are instructed to copy and paste the malicious script into a PowerShell terminal or Windows Run dialog to ultimately execute the script. PowerShell.

Research also shows that cybercriminals use it It has given way to many forms of technology and malware.

Same with email

Apart from Google Chrome, it can also be in the form of an email charm. Usually work or company-related emails contain a Hypertext Markup Language file that looks like Microsoft Word and contains various error messages.

See also  Survivor Spoiler Departure 31/5: George Papacharalumpus Got This Money - Detailed List

Similarly, It prompted users to open PowerShell and copy through the malicious code, Proofpoint was rampant in a deceptive “campaign”. Experts observed this technique with TA571 in March 2024 and the ClearFake cluster in early April and two clusters in early June.

How to avoid stealing this malware?

Although it looks huge, it is easy to find. To avoid this scam, The crux of the scam is that when you try to open a document or web page you’ll see a pop-up text indicating an error has occurred. The popup provides instructions for copying and pasting text into a PowerShell terminal or Windows Run dialog.

On the surface, one might think this would be unusual and easy to ignore. But Proofpoint cautions, “Although the attack chain requires significant user interaction to be successful, social engineering is smart enough to present a real problem and solution to someone, prompting a user to take action regardless of the risk.”

Appears to be the core of installed malware Stealing credentials and executing fraudulent crypto transactionsIn which a user has used the device to perform his own encrypted transactions.

Experts warn that this attack chain requires significant user interaction to be successful.

Leave a Reply

Your email address will not be published. Required fields are marked *