Fake Google Chrome notifications are misleading messages that mimic regular system notifications. Their main purpose is to trick users into executing malicious commands. Techno 24These notifications usually look like error messages, updates, or warnings.

• System errors: Notification of a critical system error that requires immediate attention.
• Update notification: Notification that your browser or other software is out of date and needs an urgent update.
• Virus warning: False alerts that your device is infected with a virus and needs to be scanned or fixed immediately.

According to Proofpoint, these fake notifications use different methods to compromise your device’s security.

For example, an attack ClearFake uses compromised websites and blockchain scripts; ClickFix It uses compromised websites and iframes to distribute malware. Another method involves the use of malicious HTML attachments and fake error messages to trick users into copying insecure commands.

How does it work

Each attack asks users to open Windows PowerShell and paste the code provided in the fake message.

This action leads to the installation of additional malware that leads to data theft and other malicious activities such as DarkGate, Vidar Stealer, Matanbuchus and NetSupport ransomware infections.

How to recognize fake notifications?

The main rule is to be careful. While fake Google Chrome notifications may look convincing, there are a few ways to identify them.

• Questionable requestsAlerts that prompt for unusual actions, such as running a PowerShell script or installing a root certificate, are a clear sign of a scam.
• Unexpected pop-ups: Real Google Chrome notifications do not appear randomly. Be wary of Chrome’s sudden pop-ups, especially pop-ups that require immediate action.
• Grammar and spelling errors: Fake alerts often contain grammatical errors that are rarely found in legitimate alerts. But the advent of generative AI is reducing the number of such errors.
• Unknown URLs: Fake notifications often contain unfamiliar URLs and often use the insecure HTTP protocol instead of HTTPS.
• Offers that are too good to be trueNotifications offering free software or other benefits are usually suspicious.

How to protect yourself from fake notifications?

You can take preventive measures to protect yourself from such notifications (for example, in the Google Chrome browser) and other phishing or malware attempts.

Here are some important rules to follow:

Ignore bullying: Fake alerts often use urgent language to encourage immediate action. Before responding to a notification, take some time to evaluate it and review the situation.
Check with Google: Find the threatening message online and check if it is actually valid. If not, it is most likely a scam.
Use browser security features: Enable advanced safe browsing mode to protect against malicious sites, downloads, and notifications.
Do not click on suspicious plugins: Be wary of links and attachments in suspicious notifications as they may redirect to malicious websites or initiate malicious downloads.
Update your software on timeUpdate your browser and other software regularly to get the latest security patches.

Detecting a malicious notification in Chrome can be difficult because they look so realistic, but taking the time to check your notifications can help protect yourself from potential threats and save you headaches in the future.