A fake Windows crash appears to be the latest trick hackers are using to sneak malware onto your PC.
Employees in the hospitality industry have recently become the target of a new cyberattack. It works by exploiting trust and demanding urgency. The scam begins with a message, delivered courtesy of a phishing email, that appears to be an official alert. It often claims that a critical issue has occurred on the target’s PC. Naturally, these messages are designed to look genuine. They often copy familiar PC alerts or notifications to increase their legitimacy.
Usually, this attack uses a fake Windows Blue Screen of Death (BSOD) to heighten the urgency for user actions. However, as you’ll learn today, this is simply a shortcut for installing the ClickFix malware on your PC.
Inside the ClickFix Trick
ClickFix, which we’ve previously covered on the blog, isn’t your typical malware attack. Rather than patiently waiting for a vulnerability, or tricking you into revealing login credentials, ClickFix does its best to send you into a panic. The BSOD is always cause for concern, but a quick reboot often solves the problem. However, the BSOD in this attack includes an instruction for the victim to download an app to repair their PC. But this app is malware.
The attack has been particularly effective in Europe, especially in the hospitality sector. In hotels, for example, employees are often rushed off their feet and don’t have time to question the authenticity of a PC crash. Without proper verification and judgment, ClickFix can swiftly take over an infected PC. Once installed, ClickFix has the ability to steal sensitive data, log and record activity, or even take control of the infected PC remotely.
Social engineering, that favorite technique of hackers, is at the heart of the attack. Perhaps the best example of this is a series of emails which claim to be from Booking.com. These phishing emails include links which lead victims to malicious websites. Once they reach their malicious destination, users are typically served fake error messages – such as the BSOD – and encouraged to download the ‘fix’ as a matter of urgency.
The Impact of Just One Mistake
This type of malware attack can affect any organization, not just hospitality, because it preys on human trust and urgency. It also takes just one mistake with your cybersecurity for malware to spread across your entire network. Therefore, it’s important that you incorporate these simple precautions to stay safe:
- Verify before you click: never assume that something online is safe to click. Requests to download software, follow instructions from an unexpected alert, or grant access privileges should always be scrutinized. If in doubt, always double check with an IT professional who can confirm the legitimacy of the request.
- Educate your employees: regular training on phishing and malware tactics will ensure that your staff can identify suspicious messages and minimize the risk of your systems being compromised.
- Always update as soon as possible: keeping your software up to date is paramount in keeping your defenses strong. Operating systems, printer drivers, and even antivirus tools need to be running their latest version to ensure all known vulnerabilities are protected against. Additionally, antivirus tools need to be updated with the latest malware threats to stop these before they can take hold.
For more ways to secure and optimize your business technology, contact your local IT professionals.
