Users are advised to update software only from trusted websites

Aug 20, 2013 21:01 GMT  ·  By

Security experts are warning users to beware of untrusted websites that offer browser updates since chances are they’ll end up with a piece of malware on their computers. 

A perfect example is the browseratrisk(dot)com website that tries to trick Internet Explorer, Chrome and Firefox users into installing malicious updates.

According to ThreatTrack Security researchers, the website is designed to automatically push the fake updates.

The pages responsible for serving the malicious files are designed so that users can’t close them too easily.

Once the updates are installed, a variant of the Sirefef malware or a version of Shylock is dropped. Shylock is capable of stealing sensitive information from infected computers, while Sirefef is designed to disable security features and download additional malicious elements.

If users access browseratrisk(dot)com from a mobile device or an Apple OS, they’re taken to a popular online dating service.

Internauts are advised to download software updates only from trusted sources.

Fake browser updates (3 Images)

Bogus IE update
Bogus Firefox updateBogus Chrome update
Open gallery