Home | Blog | Malware Disguising Itself As An Update

Malware Disguising Itself As An Update

An ArsTechnica article posted today is talking about a rash of websites that have been compromised, and are now delivering phony web browser updates to site visitors.

What’s important for our clients to understand is that all major web browsers have a control method for updates. Internet Explorer and Edge are updated through Windows Update. Chrome and Firefox both phone home and download updates from their trusted sources. There is never a legitimate reason for a website to distribute an update to your web browser.

As always, keep your anti-virus software up-to-date, and if you run into any problems, Reinforcements are just a phone call away.

Posted By: Michael Bellerue  /  Dated: 04/12/2018

2 thoughts on “Malware Disguising Itself As An Update

  1. I don’t understand what is meant by ‘Chrome and Firefox both “phone home” and download updates from their trusted sources. What will update requests look like? What does “phone home” mean? Thank you.

    1. Hi Bobbi,

      By “phone home” I mean that they will reach out to their own update servers that are controlled by their developers. For example, Google Chrome will connect to Google owned update servers for updates to Chrome.

      The best part about this process is that it is nearly transparent to you, the user. The most you might see is a small window stating “Chrome is applying updates, please wait,” when you start up Chrome. Browsers will download an update while you’re using the browser, and then apply the update the next time the browser is started.

      I hope that helps to clear things up!

Leave a Reply

Your email address will not be published. Required fields are marked *