Sophos, a leading global cybersecurity provider, has released a SophosLabs Uncut article, Faking it: the Thriving Business of ‘Fake Alert’ Web Scams.”
Clicking pop ups on your phone or computer are inherently irresistible. Clicking a pop up indicating a problem with your device and prompting you to contact tech support is even more so, and that’s what cybercriminals are counting on. SophosLabs Uncut has researched a resurgence of fake alerts, called Scareware or Malvertising, that lure you into thinking you need technical support and then buying fake apps or fleeceware off a mobile app store. These fake alerts also now prompt you to “call back,” saving scammers from having to cold call or voice-phish victims.
“While browser developers have done a lot to make ‘malvertising’ more difficult, ad networks keep finding new ways to pop up content in your device browsers, and scammers continue to take advantage of ad networks to target more vulnerable people. Sophos’ research shows how expansive these ‘fake alert’ fraud schemes and the ecosystem that supports them still are, and how little investment and technical skill are required to run them,” said Sean Gallagher, senior threat researcher, SophosLabs.
Luckily, fake alerts are easy to spot and remove. Check for spelling errors and strange phrasing. If there is a countdown clock or intense pressure to call back, it is likely a scam. To remove, simply close your browser. For more information about fake pop up alerts, check out SophosLabs Uncut.
(This content is surmised from a press release)
