5/20/2023 0 Comments Microsoft edge updatesThe ransomware that finishes off the attack is called ‘Magniber’. If the user is using Microsoft Edge, then the kit will send it a fake Microsoft Edge update (which is actually a malicious file for Windows devices, which subsequently downloads the ransomware). If it is possible, then the user is sent to the exploit kit landing page and, based on the info collected at the gate, the exploit kit chooses an attack from its collection of exploits. This then checks both the IP address of the user and the browser to see if the user has the capacity to be attacked. The advert sends them to a “gate”, known as a “Magnigate”. The attack starts when a user visits an ad-heavy website and encounters a malicious ad. What Happens During the Ransomware Attack? The ransomware is affecting users of both Chrome and Microsoft Edge because it’s based on chromium coding, which is also utilized to build both browsers.Īlthough it is largely being used to target users in South Korea, it wouldn’t be surprising if the same – or similar threats emerge shortly after in other locations. The kit in question is, according to Malwarebytes, “ a grab-bag of social engineering lures and exploits to attack web users and install ransomware on their computers. What’s the Threat to Edge and Chrome Users?ĭiscovered by cybersecurity researchers from Malwarebytes, the ransomware is inserted onto victims’ computers after a process facilitated by the Magnitude exploit kit.Įxploit kits are tools used by cybercriminals and are packed with exploits that target software a lot of people use, like Javascript or Adobe. The news further reinforces the importance of having antivirus software installed on your devices just in case you click a shady pop-up advertisement. The fake updates, pushed out by scammers using Magnitude exploit kits, mark a shift away from older kits that would typically take advantage of now sparsely-used or deprecated programs like Internet Explorer and Flash. Google Chrome and Microsoft Edge users have been cautioned to watch out for fake updates that are in fact ransomware.
0 Comments
Leave a Reply. |