Fake Browser Updates Used to Deploy Malware

Fraudulent browser updates on compromised websites are being used by cyber criminals to install malware, warn Proofpoint researchers. The fake updates for browsers including Chrome, Firefox and Edge, are controlled by threat actors using HTML or JavaScript code directing traffic to a hostile domain. The technique enables remote control of a computer, data theft, and ransomware deployment. Different campaigns, including SocGholish, RogueRaticate, SmartApeSG, and ClearFake, use the method to deploy malware.