The fake Flash update package is signed with a valid Apple certificate "Instead, the user is asked to willingly install them, by making them look like genuine Adobe Flash warnings (and we keep telling users to make sure Flash is up to date, so they are likely going to obey the warning and install the update)."Ĭlicking the OK button on this popup takes users to another page, where they download a fake Flash Player update package. "They do not rely on a vulnerability in the operating system," said Johannes Ullrich, the SANS researcher that discovered this campaign. The researchers from the SANS Technology Institute discovered this new campaign, and they explain that the fake Flash Player update is presumably being served via malicious advertising.Īt first, users are pestered with a popup that alerts them to update their current Flash version. ![]() ![]() There's a fake Flash Player update scam doing the rounds on the Internet, tricking users into installing a legitimate update, but also bundling the Adobe Flash Player package with scareware.
0 Comments
Leave a Reply. |