Wednesday, February 22, 2017

New malware tricks Chrome users via "missing font" warning

Attackers are always devising new ways to trick victims, and there's a new round of attacks going on as we speak, trying to trick Chrome users into installing malware by telling them there's a font missing.

The technique is quite simple and ingenious: as you visit a legitimate page you risk suddenly see just a bunch of weird symbols instead of letters, followed by a popup - trying to mimic a Chrome dialog box - warning you that some "HoeflerText" font wasn't found, and requesting you to update the Chrome Font Pack.

The dialog even shows the supposed "obsolete" font pack version as well as the new one, and also stating Google as the manufacturer in hopes to gain added credibility. But, no matter how it looks, it's fake, and if you press update, you'll be installing malware on your own computer!

We've already received some reports of people falling for it, some that quickly figured out something fishy was going just because they were using RansomFree and it alerted them for suspicious activity.

Just let your friends and family know that this happening, and that they should simply close the chrome tab should any page request them to "update" whatever it may be.


  1. A simple test when you see such a dialogue box: You should be able to drag the box (partially) out of the browsing window. When the box appears to be stuck inside the browser, you know it's an element of the website itself instead of chrome.

    1. Yes, that's a nice way to "test it". But keep in mind a web page could also spawn a popup window, and in that case it would be draggable outside the main tab. Can't be too careful. :)


Related Posts with Thumbnails

Amazon Store