Home
Build a PC

Build a PC Featured Content

Build It: Three Radeon HD 7970s—One Monster PC

Build a PC on Any Budget: Three Builds from $500 to $2000

Intel's Ivy Bridge: The Maximum PC Review

Kepler Unveiled: Nvidia's GTX 680 Benchmarked In-Depth!

Is Your SATA Cable Slowing Down Your Data Transfers? Max PC Investigates

All Build a PC Articles
Windows
Windows RSS
Windows Featured Content

Windows 8 on Arm – Everything You Need To Know About WOA

Looking Forward: Our Predictions for Windows 9

8 Things We Hate About Windows 8

8 Things We Love About Windows 8

The Big Guide: 20 Tips and Tricks to Get The Most Out of Windows 8

All Windows Articles
Best of the Best
Hardware
- Hardware Home
- CPU
- Memory
- Video Cards
- Cases
- Cooling
- Displays
- Motherboards
- Reviews
Hardware RSS
Hardware Featured Content

Build It: Upgrading an X58 Rig into a Gaming Powerhouse

Build a PC on Any Budget: Three Builds from $500 to $2000

PC Pr0n: 25 New, Kick-Ass Case Mods

Intel's Ivy Bridge: The Maximum PC Review

Gaming Showdown: Playstation Vita vs iPhone 4S

All Hardware Articles
Software
Software RSS
Software Featured Content

Windows 8 on Arm – Everything You Need To Know About WOA

8 Things We Hate About Windows 8

Install Windows 8 Today

Seven Ways to Stop Piracy WITHOUT DRM

In Search of the Suite Spot: 3 Media Creation Packages Face Off

All Software Articles
Gaming
- Gaming Home
- Reviews
- Hardware
- Software
- Gaming PCs
- Bioshock
Gaming RSS
Gaming Featured Content

The Game Boy: Game Endings Aren't Bad – They're Just Misunderstood

First Impressions: Diablo III's Hits, Misses, and Head-Scratchers

Never Be Productive Again: The 20 Best New Browser Games

Gaming Showdown: Playstation Vita vs iPhone 4S

Eurocom Neptune 3D Review

All Gaming Articles

Crafty Malware Detects Browser, Imitates Warning Page

Posted 09/07/2010 at 5:35am | by Paul Lilly

3

Comments

Print

Malware writers are a cunning bunch, and if you don't keep up with the latest trickery, you could be in for a world of hurt. The latest ruse making the rounds is a nasty bit of code called Rogue:MSIL/Zeven that first detects what browser you're using and then spoofs said browser's warning page.

"This is meant to be a social engineering scheme in order to trick the user into downloading and installing the rogue, relying on the user's trust of his day-to-day browser," Microsoft warned in a recent blog post on its Malware Protection Center portal.

"The similarity between the fake warning pages is so accurate that it can trick even highly trained eyes."

It works with Internet Explorer, Chrome, and Firefox, the three most popular browsers on the planet, though there are some telltale signs.

"In the Firefox page, for example, you can see it's not the real warning page because they misspelled 'out' and wrote 'Get me our of here,'" Microsoft explains.

The biggest telltale sign is that in all three browsers, the fake warning prompts potential victims to download an "update" or a "solution," which is not something you should ever see when a website is blocked.

Tags:

3

Comments

Comments are closed on this article

wyuguy

September 24, 2010 at 4:28am

thanks for your reminder. I will be careful

wide format printer

JohnP

September 07, 2010 at 10:03am

When doing a search on Pirate Bay (for legal downloads of course), I would get a warning page almost exactly like above, with a link. I immediately suspected foul play and went to the page directly skipping PB search engine. Lo and behold, no warning. This happened a couple of weeks ago.

This is actually something I have seen (unlike the vast number of exploits that MB mentions that I have never seen).

Silencer

September 07, 2010 at 4:02pm

...using No-Script in my Firefox, helps when visiting TPB.

Connect with MaximumPC

Featured Content

Diablo 3: Our First Impressions

We Want YOU

To apply for a job writing for Maximum PC

No BS Podcast #185: No Star Wars

The gang discusses the GTX 690, Trinity, Ivy Bridge, Amazon, big-box stores, MMOs,...

10 of the Biggest Tech Stories We All Got Wrong

Nvidia GTX 690 Benchmarked

Nvidia's dual-GPU Kepler Card: we've run the numbers!

This month's issue

Feature

Build a PC On Any Budget

Feature

Cloud Services Showdown

How-To

Encrypt Your External Drive

Build It

Upgrade an X58 Rig

Most Commented Articles

122Comments

Microsoft Plans to Kill the Aero UI Prior To Final...

96Comments

Install Windows 8 Today

91Comments

Kepler Unveiled: Nvidia's GTX 680 Benchmarked In-...

84Comments

Know The Difference: Phasers vs Blasters And 8 Other...

82Comments

YouTube Video Shows How "Real People" React...

Latest Max PC Tweets

maximumpc: Original RickRoll Video Returns to YouTube After 24-Hour Copyright Hiatus http://t.co/MaH9Sxyy1 day 7 hours ago
maximumpc: Corsair has decided not to go forward with its $78 million IPO, citing weak equity market conditions http://t.co/A5a4DAzj1 day 7 hours ago
maximumpc: Want to work at Maximum PC? Our Online Managing Editor, Alex, is moving away, so we need a new one. http://t.co/9Z7JCh0E3 days 5 hours ago

MaximumPC on Facebook

Recommendations

Crafty Malware Detects Browser, Imitates Warning Page

Crafty Malware Detects Browser, Imitates Warning Page

Here's What You Get:

More like this

Comments

wyuguy

JohnP

Silencer

Log in to MaximumPC directly or log in using Facebook

Connect with MaximumPC

Featured Content

This month's issue

Feature

Feature

How-To

Build It

Buy Subscription

Most Commented Articles

Latest Max PC Tweets

MaximumPC on Facebook