Google Chrome, Mozilla Firefox, Microsoft Edge, and other browsers are suffering from an ongoing malware campaign. The attack has affected various browsers and is designed to inject ads into search results and add malicious browser extensions as well.
According Gadgets360 report, a Microsoft blog post stated that from May to September 2020, the company recorded hundreds of thousands of encounters of the Adrozek malware across the globe. The tech giant even tracked 159 unique domains, each of which hosted an average of 17,300 unique URLs. This in turn hosted an average of over 15,300 distinct, polymorphic malware samples. The malware’s primary aim is to lead users to affiliated websites and even serve them ads by injecting them into search results.
Editor’s Pick: Samsung Galaxy S21 series new leak reveals names of accessories, new 30W fast charger
Furthermore, the malware achieves this by also silently adding on other malicious browser extensions as well. This changes the browser settings to insert ads into webpages, where one wouldn’t otherwise find them. These ads can then be found on top of other legitimate ads from the search engine and is claimed to also modify DLL per target browser. In simpler terms, it can turn of security controls on the browser.
According to a Microsoft researcher, “Despite targeting different extensions on each browser, the malware adds the same malicious scripts to these extensions. In the past, browser modifiers calculated the hashes like browsers do and update the Secure Preferences accordingly. Adrozek goes one step further and patches the function that launches the integrity check.”
ALWAYS BE THE FIRST TO KNOW – FOLLOW US!