Kayla Thrailkill says, “A new ransomware campaign is targeting Google Chrome users.  If Chrome users visit a compromised site, an alert will pop up prompting the user to “update” a Chrome font extension.  The false update claims it need to execute because Hoefler Text is not found.  Although this text font is legitimate, the update is not.

Image provided by Forbes, via Proofpoint

According to Forbes, researchers have found after users execute the fake update, they become infected with the ransomware variant, Spora.  Although this ransomware variant is similar to other variants, it does have a few features that set it apart”.

Google Chrome Users Are Being Baited

TechTalk

Sharing is caring