According to new information from Malwarebytes, scammers are posting malicious advertisements on Microsoft Edge.
According to a blog post (opens in a new tab) by its threat intelligence team, the company has claimed that the program, which was established to direct victims to tech support scam pages, has been in place for at least two months.
This specific scam activity has been particularly successful because of the Microsoft Edges news feed doubles as the web browsers homepage, increasing the chances that users may be embroiled in shocking or bizarre reports published by attackers.
Fake news in Microsoft Edge
A script is created to determine if a user should be targeted by the scam after a user has clicked on a false news story. According to Malwarebytes, the script aims to filter out bots, VPNs, and geolocations that aren''t of interest, and these machines are instead sent to a harmless decoy page.
Founded in response to the plague of malvertising, this program is designed to infiltrate innocent users with phony browser lockers, which are well-known and used by tech support scammers.
The scam is fueled by an endless list of malicious domains managed by DigitalOceans'' cloud-based web hosting infrastructure, making the danger difficult to eradicate completely. Malwarebytes claims that over 200 hostnames were being used to fraudulent tech support pages.
A lot of effort was made to stymie the use of identifying information (known as fingerprinting) about the servers and devices involved in the campaign was also noted.
Kalra has also been linked to a number of other entities involved in this particular campaign, which Malwarebytes has said is one of the biggest we are seeing in terms of telemetry noise.
Default browsers and malvertising
Microsoft Edge is the standard Windows 10 and 11, which makes it a primary target for scammers looking to target the most serious number of unidentified users, who are less aware of the measures they can take to keep their information safe.
Users looking to protect themselves against cyber support scams and other threats may wish to use one of the best free VPNs, consider an anonymous web browser, or simply change their Microsoft Edge homepage from the default news feed.
When interfering with content from an unfamiliar or non-reputable source, people should maintain a strong sense of skepticism. If a news story sounds too good to be true, then think twice before clicking on it may go a long way.
Often, scammers aim to convince users that their phone number has been infected, and follow their instructions. This is a way to send money to an unknown actor, which is a form of ransomware.
Users should be cautious about the pages making these requests. Usually, its antivirus software, not a web browser, is capable of reporting on threats to a device.