Be aware of Fake Windows 11 upgrade sites

The website mimics Microsoft’s official windows download page for the operating system, using the right design, images, logos, and section bars at the top.

0
291
Fake Windows 11 upgrade has data-stealing malware
Fake Windows 11 upgrade has data-stealing malware (Source : Microsoft)

Cybercrimes have grown during the pandemic with different types of invasions such as phishing, ransomware, malware, and crypto scams. In a recent campaign that has come to light, a fake Windows 11 upgrade site is being used to target victims and collect their web browser data and other stored credentials, including data from cryptocurrency wallets and the file system.

Hackers are infecting computers with malware through a fake download site for Windows 11. The website mimics Microsoft’s official windows download page for the operating system, using the right design, images, logos, and section bars at the top.

The incorrect URL is the best clear indication that it’s fake (see the image below). Clicking the ‘Download Now’ button installs an ISO file containing the new Inno Stealer malware, which can steal cryptocurrency wallets and web browser data such as passwords. When installed, it disables security software (like Antivirus and Anti-malware programs) to avoid detection.

fake windows 11 site
A fake windows 11 upgrade site mimics the original Microsoft site.

How can you stay safe?

The criminals behind this particular site managed to trick search engines to get the URL listed as a legitimate search result, so the most reliable way to evade such hoaxes is to never look for Windows download pages via a search engine. Instead, enter the URL straight into your web browser’s address bar: www.microsoft.com/software-download/windows11. The phony site was still live at the time of writing, though it’s likely to be taken down soon. Be aware, though, that criminals will try the exact approach using other URLs to infect people who are looking to download Windows 11. In February, security researchers removed a similar Russian site that was infecting computers with the RedLine malware.

One reason these attacks are prevalent is that hackers are exploiting the frustration many people feel at not meeting Microsoft’s hardware prerequisites for installing Windows 11. They know that some users who are denied the upgrade through Windows Update (because their computers aren’t powerful enough) will seek alternative methods to install Windows 11 – such as by searching for download pages.

LEAVE A REPLY

Please enter your comment!
Please enter your name here