There is a major phishing attack for the current version of Chrome (version 57.0.2987) and the current version of FireFox (version 52.0.2). This has not be found to affect Internet Explorer or Safari browsers at this time, but everyone should be careful.
What is a phishing attack? A phishing attack is when someone sends you an email containing a link to a malicious website that looks very similar to one you would ordinarily trust. Once there, one of two things will happen:
1) You notice that something is off, so you leave and nothing malicious happens.
2) You try to sign in with your username and password. Since this is a fake site, your username and password are now compromised.
However, even if you don’t sign in or click anything, the mere act of visiting these malicious sites can still infect your computer with malware.
This type of phishing uses what is called unicode to register a domain that looks exactly the same as another trusted site, which they clone and masquerade as. WordFence, a security plugin for WordPress, demonstrated this by using the unicode approach to clone a healthcare website. If people went there and tried to access their medical records, the attackers would then have full access to the person’s healthcare records or any other sensitive information. YIKES!
How do you protect yourself or fix it?
Chrome: The next update for Chrome will fix this issue and help keep you safe. Some people recommend downloading Chrome Canary, a “bleeding edge” version of Chrome that gets updates and features earlier but QuickFix does not recommend this unless you are an advanced PC user.
FireFox: There is no easy fix for this issue in FireFox. However, there are a few things that a computer technician can help implement. We would not recommend attempting anything unless you have above-average PC experience or have a computer professional do it for you.
One thing that you can do it take the time to copy and paste the website address into your browser or in NotePad or someone else. This will show you what the actual website address is and helps you see if you should click it or not.
If you have any other questions or concerns that this has happened to you, please DO NOT HESITATE to reach out to QuickFix Geek. We would be happy to help you in any way that we can. Just reach out by contacting us!
As a managed services provider, our primary job is to be proactive. We monitor, backup, update, and protect.
We love taking care of our clients, and can help you take care of yours, too! QuickFix offers a robust reseller program!
76% of all malware attacks happen through Email. Not only is our email safe, but it’ll also be your work-horse.
We keep workstations running quickly and safely so that you and your team can focus on working instead of fixing.
Having a reliable, fast, secure network is like having a safe, fast, and secure ambulance. There should never be another way.
Our in-house web team provides white glove web maintenance, construction, and design.