![Popups push malware using warnings for fake Chrome, Firefox, IE, and even iPhone updates](https://img-cdn.tnwcdn.com/image?fit=1280%2C720&url=https%3A%2F%2Fcdn0.tnwcdn.com%2Fwp-content%2Fblogs.dir%2F1%2Ffiles%2F2012%2F11%2F1397213_18667730.jpg&signature=c836569adbe06c91c9f909949309fe00)
In November alone, Chrome 23 was released, Firefox 17 launched, and an IE10 preview for Windows 7 arrived on the scene. Cybercriminals have decided to take advantage of these updates by pushing popups with warnings of fake browser updates in order to push malware.
A new securebrowserupdate.com domain popped up on November 16, and while itβs dead now, others are sure to spring up soon, if they havenβt already. A script on the site detects which browser youβre running, and then offers βnew versionsβ of your browser with βservice packsβ and βAntivirus protection,β both which of course donβt exist for browsers.
The warning is the same for all of them: βAttention! Your browser is out of date, some of extensions may interfere your work!β Users are told that their current browser version is out of date and that they are invited to install the latest update, which is of course malware.
Hereβs how the Chrome one looks, courtesy of StopMalvertising:
![fakebrowserupdates3](https://cdn0.tnwcdn.com/wp-content/blogs.dir/1/files/2012/11/fakebrowserupdates3.jpg)
Hereβs how the Firefox one looks (it changes accordingly if youβre running an older version):
![fakebrowserupdates2](https://cdn0.tnwcdn.com/wp-content/blogs.dir/1/files/2012/11/fakebrowserupdates2.jpg)
Hereβs how the IE9 one looks (yes, despite the release of IE10):
![fakebrowserupdates4](https://cdn0.tnwcdn.com/wp-content/blogs.dir/1/files/2012/11/fakebrowserupdates4.jpg)
Out of all of these, the iPhone one takes the cake:
![fakebrowserupdates5](https://cdn0.tnwcdn.com/wp-content/blogs.dir/1/files/2012/11/fakebrowserupdates5.jpg)
While the iPhone scam is clearly the least likely to work, analysis of the script in question shows that this isnβt just a desktop attack. The script in question shows mobile users may be at risk of premium rate SMS messages if they visit the site, according to Russian strings in the code.
In all cases, victims are redirected to the fake browser update domain via advertising on other sites. If you are browsing the Web and suddenly get a popup or ad to update your browser, donβt click it. Furthermore, make sure youβre running a solid security solution if you arenβt already.
Image Credit: Jim OβConnor
Get the TNW newsletter
Get the most important tech news in your inbox each week.