3RD OCT 2024
What is scareware in cybersecurity? Turns out, almost all digital denizens have had a brush with this deceptive tactic.
There’s probably been a point in our digital routines where we've clicked on a sketchy website in the hopes of finding a particular movie or show. If not, good for you. But if you have, chances are your screen gets flooded with pop-ups and sketchy ads for dating websites that wants you to meet 'Lauren who lives 5 miles away.'
Those seemingly 'harmless pop-ups' can morph into the terrifying scam that is scareware.
Scareware is a type of malicious software, usually served in the form of ads and popups, that makes use of social engineering. It tricks people into handing over their data through the use of scare tactics.
Scareware can take many forms - a phishing email, emergency notice, or the most common form, a browser window pop-up. Scareware uses fear-inducing methods such as the threat of a virus or emergency to coax you into clicking immediately.
After scaring you into pressing the link or email, a solution is offered in the form of fake security software or a fee. To make the process seem more legitimate, scammers may use logos of real companies or products such as “Windows anti-virus” or a warning like “Android has detected a virus on your device.”
If users click on the phony “solution”, either:
You’ll be directed to a scam website, where it will instruct you to enter your credit card information to buy the software. In reality there is no software, and your data may be stolen to commit identity theft.
Instead of stealing data, some scammers may charge users for useless software that doesn’t offer any protection.
In 2010, the website for the Minneapolis Star Tribune started displaying ads for Best Western that led users to counterfeit sites, infecting their devices with malware. These ads generated pop-ups claiming the users' devices were compromised and urged them to pay $49.95 for a software download to fix the issue. The attackers made $250,000 before they were apprehended.
Other instances of scareware focus on specific devices. For instance, Mac Defender is an early type of malware designed for Mac computers, while Android Defender was packaged as a fake antivirus program aimed at Android phones.
When in doubt, always check reviews and impressions of software online.
Scareware scams include:
Fake virus scams: This uses bogus messages to warn users that their device has been infected with a virus. A solution is then offered via fake anti-virus software.
Fake tech support: scammers may cold call individuals, pretending to be from support personnel from legitimate companies. They may charge for fraudulent services or convince them to uninstall security software to allow the scammer to steal their data.
Malvertising: scareware artists may hijack ads to spread viruses as users may be more likely to click on an ad rather than a pop-up.
Law enforcement scams: a warning may be sent to victims that illegal material was found on their advice by scammers posing as the FBI or another law enforcement agency.
Ransomware encrypts a user's files or locks them out of their device, demanding a ransom payment to restore access. Victims typically receive a message that their data has been compromised, and that they must pay a specified amount to regain access.
Unlike ransomware, scareware does not typically encrypt files or lock users out of their, instead it preys on fear to sell fake solutions.
Once scareware infects a device, it can be challenging to remove. These programs may usually disable other security software and hide their files. Some fake antivirus programs can even reinstall themselves after being removed.
To prevent scareware from taking hold, organizations and users can adopt the following strategies:
Cybersecurity Awareness Training: Users who understand the warning signs of an attack - like differentiating between genuine antivirus alerts and scam pop-ups - are less likely to fall victim to scareware.
Anti-Malware Tools: Reputable anti-malware and antivirus software can block the installation of scareware and assist in its removal if it does get onto a device.
Network Security Tools: Using firewalls and URL filters can prevent access to fraudulent websites and keep browsers secure. Additional tools such as ad blockers, pop-up blockers, and spam filters can also help keep you safe from scareware messages.
Software Updates and Patches: Regularly updating security tools, web browsers, and other applications can help protect against tactics like malvertising and drive-by downloads to prevent scareware from exploiting vulnerabilities.
Scareware represents a growing threat in the digital landscape, preying on users’ fears to exploit their trust and extract money through deceptive tactics. As cybercriminals become increasingly sophisticated, awareness and education are our best defenses. Ultimately, staying informed and proactive is key to protecting yourself and your data in today’s cyber environment.
Check out Pureversity’s interactive cybersecurity training program for learning about how to deal with threats like scareware.
