Definition
Scareware is a type of cyberattack where hackers manipulate victims into downloading malware by clicking on malicious links or visiting infected websites. For example, an attacker can scare a victim that their device is infected with malware and must buy software for protection.
Usually, hackers use fear-inducing messages with text claiming they are under attack and need to act immediately. Unfortunately, the software program users download is malware designed to steal personal data.
Sometimes, hackers distribute scareware through spam emails and notifications that claim to offer software and services from malicious companies.
So, if you start receiving emails from nowhere claiming that your device has malware, you are likely a target of a scareware attack.
Examples of Real-world Scareware Attacks
- In 2010, The Minneapolis Star Tribune newspaper unknowingly started displaying scareware pop-ups disguised as Best Western Hotel ads on its website. These pop-ups redirected visitors to fake websites that then infected their devices with malware.
- In 2019, Office Depot and Support.com settled a case by agreeing to pay $35 million for knowingly distributing a malicious antivirus program to customers through alarming messages claiming their devices were at risk. This scareware was used to steal valuable information from victims, which they sold to third parties.
How to Detect Scareware
- Pop-up messages: Legitimate antivirus programs do not send messages via web browser pop-ups. If this happens, the notification is likely scareware.
- Malvertising: Real antivirus software does not use fear-inducing notifications. Such a message is more likely to be a false positive from scareware.
- Unable to access the system or files: You’re more likely to be denied access to antivirus websites or blocked when accessing other files.
- Upgrade requests: The program attempts to fool users into paying for a premium software version to access premium features.
- Decreased performance: If your device is infected with scareware, you will likely experience slowdowns, crashes, and freezes.
- Altered settings: Some scareware can modify your system settings, changing things as simple as the desktop background.
How to Prevent Yourself from Scareware
- Use trusted security programs: Only install applications that you’re confident of their legitimacy.
- Use additional security features: Install extra security features such as URL filters, firewalls, and pop-up blockers to prevent scareware notifications from showing up.
- Update your system: Keep your operating system and browser up to date to get the latest security patches.
- Be cautious: Avoid clicking browser pop-ups claiming to offer you security. Also, do not submit any private information to unknown parties.
- Close the browser instead of the pop-up alert: Close the entire browser since some scareware uses a close or x button that, when clicked, launches the malware (clickjacking).