• Office Hours : 08:00 - 17:30

Hackers are using Google Alerts to help spread malware

Hackers have managed to subvert a Google service into tricking unsuspecting users into installing malware.

Cyber criminals have targeted the Google Alerts service, which they have used to push fake updates to the now-defunct Adobe Flash Player. According to reports, hackers have created fake news stories with titles containing popular keywords that Google’s search engine then indexes. When this happens, Google Alerts pushes out notifications to people who follow these keywords.

Since these “stories” come via Google Alerts, hackers hope victims will think the alert is legitimate and will click on the fake story. Doing so leads victims to a malicious site that pushes browser notification spam, unwanted extensions, or fake giveaways.

The latest attack redirects users to a page that states the user’s Flash Player is outdated and needs to be updated. Adobe no longer supports or updates Flash Player, but many victims may not realize this and click on the update button. Microsoft killed Adobe Flash support in its web browsers last January, around the same time as Google, Apple, and Mozilla.

If the victim accepts the update, the page downloads a file that installs a potentially unwanted program called One Updater. This in itself offers to install other potentially unwanted programs. 

Google Alerts users have been advised that if they’re redirected to such websites and are prompted to install an extension or program update to close the browser window immediately.

Javvad Malik, security awareness advocate at KnowBe4, told IT Pro that by manipulating Google Alerts, cyber criminals are finding ingenious ways to get into users’ inboxes, as email gateways and spam filters won’t block alerts. 

“Once in the user’s inbox, there is a high likelihood that users will click on the link because the alerts are something they expect and trust,” he said.

“It’s why users should keep their guard up even with trusted or expected links and if they end up on a page where there are unwanted pop-ups or downloads, they should immediately close the browser window and alert their IT security team to ensure no malicious software has been downloaded.”

Featured Resources

Remote workforce security report

Key challenges, security threats, and investment priorities of organisations during the pandemic

Download now

On-prem storage vs. public cloud storage

Economic advantages of on-premises object storage vs. public cloud for enterprise data storage

Download now

The future of CIAM

Four trends shaping identity and access management

Download now

Realising the benefits of automated machine learning

How to overcome machine learning obstacles and start reaping the benefits

Download now

See the original article here: ITPro