2/22 “Missing font” malware

A highly sophisticated scam targeting Google Chrome users is circulating: a pop-up prompts you to download a “missing font” file, but the file is actually malware.

The style of the message makes it look completely legitimate. How can you tell that it’s malware? From Refinery29:

  • The dialog window shows that you’re using Chrome version 53, regardless of what you’re actually using (the most recent version is 56).
  • If you click the “Update” button (don’t!), a file named “Chrome Font v7.5.1.exe” will be downloaded, but it doesn’t match the one in the image, “Chrome_Font.exe.”
  • You might get a “this file isn’t downloaded often” warning if you download the file (again, don’t!).

Bottom line: Exercise caution when downloading anything onto your computer.

What to do if you give your password to a phisher and how to recognize scams.

To: Everyone
From: Veronica Brandstrader, LTS, x2171
More info: Computing Help Desk, x3333 (faculty/staff), x7777 (students)

This entry was posted in Security. Bookmark the permalink.