Loader

FakeUpdates

First seen: 2017-01 • Status: active

Currently Active Threat

FakeUpdates shows fake "Update your browser" messages on hacked websites. Clicking them installs malware.

Overview

FakeUpdates displays fake browser update prompts on compromised websites to deliver malware loaders.

Also Known As

SocGholish, FAKEUPDATES

How It Spreads

  • Compromised websites
  • Fake update prompts

What It Does

  • Malware delivery
  • Initial access
  • Leads to ransomware

Is your business exposed?

Target Platforms

Windows

Detection Tips

  • Never download updates from website popups

MITRE ATT&CK Techniques

T1189, T1105

If You're Infected

  1. 1.

    Check for additional malware

Related Malware

Cobalt Strike

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required

Privacy PolicyYour Privacy Choices