Fake “Reported Attack Page!” warnings leading to fake AVs

Peddlers of the rogue AV solution named Security Tool have demonstrated a predilection for masquerading their solution as a Firefox update, and it’s obviously a successful tactic since they are still using it.

F-Secure reports that sites sporting a fake – but rather faithfully recreated – Firefox “Reported Attack Page!” warning are trying to trick users into downloading the rogue AV:

And if you have scripts enabled in your browser, you will be offered to download the “update” even if you don’t click on the “Download Updates!” button. And if you click on the “Cancel” button, the page insists:

This “Warning!” trick has been used quite often lately, so users are advised to be extra careful when faced with seemingly blocked pages.




Share this