Cybersecurity experts cautioned users regarding a hazard when installing an ad blocker that precisely mimics well-known software. According to analysts, after using the program, the Chrome browser crashes, and the Windows OS gets infected with viruses.
The anti-malware.ru publication reports that cybercriminals have taken quite an inventive approach. Assailants render the browser’s operation impossible, and afterward, compel the user to independently initiate the operating system infection command.
The malicious Chrome extension is named NexShield – Advanced Web Guardian. Many users may have downloaded it from the official plugins store. The software is a replica of uBlock Origin Lite. Roughly an hour after setup, the utility launched an attack on the system, generating an endless loop of connections. Consequently, the browser’s functionality ceases entirely.
Following the “crash,” the user receives a notice about the supposed need to run a scan for the issue within guidelines. They are prompted to open the “Run” window in Windows and paste a command already copied to the clipboard. This way, the person activates a viral mechanism that infiltrates the registry.
About the Author
