news 
FBI Warns Chrome Users—Stop Downloading These Updates
The Federal Bureau of Investigation (FBI) has issued a dire warning to Chrome users, advising them to cease downloading updates from unofficial sources. This cautionary message is part of the “ongoing #StopRansomware effort” aimed at educating network defenders and IT professionals about various ransomware variants and threat actors.
According to Zak Doffman’s report, it appears that Interlock ransomware attacks are surging globally, with a significant decline in Q2. This is attributed to seasonal slowdowns and increased law enforcement disruption of key operators. However, the risk remains imminent, as Microsoft has observed a Chinese government-backed group exploiting unfixed Microsoft vulnerabilities.
The FBI alerts users to two primary methods of initial entry for ransomware attacks: ClickFix, which is easily detectable, and unofficial Chrome updates. Fake Google Chrome browser executables are designed to execute PowerShell scripts that drop files into the Windows Startup folder. When executed, these files will run a remote access trojan (RAT) every time a user logs in.
To avoid falling prey to these tactics, users must exercise caution when downloading updates or installations. ESET’s Jake Moore emphasizes that blindly installing updates without verifying their integrity can introduce new risks. He urges Windows users to remain vigilant and consider temporarily switching browsers until Google releases a safe version.
In the meantime, it is crucial to verify the source and content of updates to ensure they are legitimate. The FBI warns that any message or popup instructing you to paste text into a Windows command and then execute the script should be ignored.
Source: www.forbes.com
