Hackers Hide Fake Remote Management Software in Fake Chrome Updates

Beware of that update; it may open a back door into your network.

Yup. We have trained people to install updates to protect their systems. That works unless the hackers create fake updates for software like Chrome, Zoom and Teams. They even have given the fake updates names that seem real like MicrosoftTeams.msi.

The hackers are also using fake party invitations and fake government tax related forms. When people open the attachments it installs the fake software.

Sometimes they are even installing TWO fake remote management tools, giving them a backup in case IT sees one of them and uninstalls it.

Using AI, the days of bad grammar and broken English are pretty much gone. Not completely – I still see some of that – but mostly the phishing emails are very polished. This is an example of what AI can do for any hacker; even one with limited skills. If that hacker is in a country like Russia or China, good like getting them prosecuted.

Good cyber hygiene is a good defense and employee training is definitely part of it. Users need to ask their security team or help desk if they have any questions about an email or text message – BEFORE THEY OPEN ANY ATTACHMENTS.

Credit: Hackread

by