Researchers warn of increased malware delivery via fake browser updates

The recently discovered ClearFake threat uses compromised WordPress sites to push malicious fake browser updates. Likely operated by the group behind the SocGholish malware delivery campaigns, ClearFake’s endgame is to trick users into downloading malware, including HijackLoader and IDAT loader. Researchers believe other players may also be adopting similar methods, inserting phishing and ransomware threats into malicious software updates. Protection strategies include user education, endpoint protection, and network detections.