Scareware Information - Hardware & Software

A user at our office stumbled across this page today after clicking what was ostensibly a news article on MSN. [IMG]https://i.imgur.com/G4biJtk.png[/IMG] Does anyone have any information on scareware like this (i.e. how people set these up, how the URL can have that output, etc). Not finding too many in-depth articles concerning this.

It's a phishing scam. You call that number and you'll get connected to someone who claims to be "Support" for your issue. Next they will try to remote to your computer. They're smart, they pay for real remote access tools that support would use. Go To Meeting is the most popular. Once they're on your machine they lock you out. They start burying their software, look to disable your AV and start running software to get your password, dump your .OST for your e-mails, etc. Source: I deal with this all the time at work. Dealt with it directly and did the clean-up and impact reports afterwards. I am actually cleaning up a mess from this as we speak! They have malware on their machine that gets them here in the first place. -Run Malwarebytes [url]https://www.malwarebytes.com/[/url] -Run Hitman [url]https://www.hitmanpro.com/en-us/hmp.aspx[/url] -Go to their browser and remove all their fishy looking extensions (guarantee there is a couple) -Run AV scans. Windows Defender is pretty good, assuming you're on Windows.

Surely it's not necessarily malware on their machine that has caused an issue. Ad networks have been known in the past for (unintentionally) allowing irresponsible advertisements to appear on fairly popular websites.

[QUOTE=colincooke;52705018]Surely it's not necessarily malware on their machine that has caused an issue. Ad networks have been known in the past for (unintentionally) allowing irresponsible advertisements to appear on fairly popular websites.[/QUOTE] Malware (as in some Chrome add-ons) can enable this behavior and can cause the pop-ups/DNS redirects.

[QUOTE=colincooke;52705018]Surely it's not necessarily malware on their machine that has caused an issue. Ad networks have been known in the past for (unintentionally) allowing irresponsible advertisements to appear on fairly popular websites.[/QUOTE] yahoo mail is notorious for this exactly, I constantly and consistently get redirected to fake firefox update pages. I dont even have to be on the tab, the rolling advertisements can refresh and boom I get redirected. They have not even 10 people running the backend and have straight up admitted to being overwhelmed when it comes to taking care of anything but critical issues. For those ready to flog me for using yahoo, I know I know, I only use it as a backup for miscellaneous signups.