Huge Scam Freezes Chrome: Do Not Panic. Do Not Call.

Malicious ads and booby-trapped Web pages are using an application programming interface (API) to freeze users' Chrome web browser, the cybersecurity firm Malwarebytes reported yesterday. The scam offers victims a "fix" in the form of a notification to call a fake tech-support service and pay for help.

The dodgy tech support API is one of an increasing number of fake browser alerts spotted in the wild over the past few months, Malwarebytes analyst Jérôme Segura wrote in a blog post. Such tactics are aimed at scaring users into paying hundreds of dollars to unlock their frozen browsers.

While browser-makers have been working to improve defenses, Segura said, scammers have continued to look for new ways to exploit weaknesses in the software. This latest malware targets Windows users browsing with Google Chrome, currently the most widely-used browser, although other techniques are being used against other browsers, as well.

"[T]his is yet another example of the desire for threat actors to deploy new social engineering schemes," Segura wrote.

Step One: Don't Panic

Users who encounter the Chrome-targeting fake alert will see an alert window pop up warning that their device has been infected by malware. The alert also provides a toll-free number that purports to be for Microsoft support, but instead connects victims to a scam service.

The malware works by launching several functions in succession, taking advantage of the Chrome browser's ability to save files locally.

"It happens too fast to see how it works, but you may be able to spot it with a powerful enough machine and if you try to close the tab early on," Segura wrote. "That code triggers a very large number of downloads in rapid fire, which causes the browser to become unresponsive within a few seconds, and unable to be closed via normal means."

Users who...

Comments are closed.