![\"Screenshot](\"https:\/\/wp.uthscsa.edu\/phishbowl\/wp-content\/uploads\/sites\/90\/2023\/10\/20231025FakeUpdate.png\")
<\/p>\nOne of the oldest malware tricks in the book \u2014 hacked websites claiming visitors need to update their Web browser before they can view any content \u2014 has roared back to life in the past few months. New research shows the attackers behind one such scheme have developed an ingenious way of keeping their malware from being taken down by security experts or law enforcement: By hosting the malicious files on a decentralized, anonymous cryptocurrency blockchain.<\/p>\n
In August 2023, security researcher\u00a0Randy McEoin\u00a0blogged about a scam he dubbed\u00a0ClearFake, which uses hacked WordPress sites to serve visitors with a page that claims you need to update your browser before you can view the content.<\/p>\n
The fake browser alerts are specific to the browser you\u2019re using, so if you\u2019re surfing the Web with Chrome, for example, you\u2019ll get a Chrome update prompt. Those who are fooled into clicking the update button will have a malicious file dropped on their system that tries to install an information stealing trojan. This information comes from Krebs on Security.<\/p>\n
If you see a page similar one of the pictures below, close your browser. The site has probably been compromised because neither Chrome or Firefox deliver updates from websites.<\/p>\n
<\/p>\n
![\"Screenshot](\"https:\/\/wp.uthscsa.edu\/phishbowl\/wp-content\/uploads\/sites\/90\/2023\/10\/20231025FakeUpdate2.png\")
<\/p>\n","protected":false},"excerpt":{"rendered":"
One of the oldest malware tricks in the book \u2014 hacked websites claiming visitors need to update their Web browser before they can view any content \u2014 has roared back to life in the past few months. New research shows the attackers behind one such scheme have developed an ingenious way of keeping their malware […]<\/p>\n","protected":false},"author":412,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-1727","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"yoast_head":"\n