Do not be tempted to click on an offered PowerShell fix, for an apparent error in Microsoft Word, OneDrive or Google Chrome – it could be a social engineering trick to get you to install malware to your computer:
Fake Google Chrome errors trick you into running malicious PowerShell scripts (bleepingcomputer.com)
Proofpoint researchers discovered that threat actors are using JavaScript in .html attachments or on poisoned websites to display spoof errors. These errors, the hackers claim, can be fixed by running this PowerShell script, just click here. However, of course the link runs malware not a fix.
The threat actors have made a very convincing error message with helpful tips on how to “fix” your problem.
Your takeaway
Cyber attacks can originate from nearly anywhere, if i listed them all now, tomorrow there will be somthing new. Cyber Security Awareness Training for your team is essential to back up your cyber security, when the threat actors evade your tecnical defences.
Clive Catton MSc (Cyber Security) – by-line and other articles
