By Arica Chhay, Jay Krous, Michael Smitasin
Berkeley Lab Cyber Security wants to make you aware of an ongoing attack using fake pop-up windows. This method has been observed several times at the Lab in the last few months. The pop-ups appear to be from Microsoft or an antivirus program attempting to assist you. In fact, the pop-ups are just from your browser, with a bunch of settings designed to gain your attention, such as maximizing the browser windows and playing an alert sound or voice message that makes them both alarming and annoying.
The pop-up itself is completely benign. Although hard to exit (use the ESC key to exit full screen mode), they are harmless. However, the phone number they provide is the entry point into a sophisticated attack. If you call the number, you will be greeted by a helpful, professional voice, perhaps stating to be from Microsoft. They will lead you to another site to download a remote access application under the guise of providing technical support. The attackers then gain complete access to your computer, resulting in a serious security breach, and potential for financial loss, identity theft, or installation of malware.
An actual example of a fake webpage recently reported to Cyber Security.
Recommended Actions
It’s essential to carefully assess any unexpected messages and prompts. Be aware that you can still encounter malicious pop-up messages and websites even with an advanced antivirus program like CrowdStrike installed, as attackers are utilizing legitimate browser features. Scammers can also use technology to spoof or mimic fake phone numbers appearing on your caller ID. By staying informed and cautious of all unsolicited requests for access to your computer, you can help protect yourself and keep the Lab secure.
Report suspicious activity and any potential or known breach of personal information to security@lbl.gov as soon as possible.
For other related questions, please email help@lbl.gov to open a ticket.
Review past Cyber Security phishing articles for more tips on identifying and preventing scams.