The month-to-month variety of customers affected by fraudulent browser push notifications as a way of phishing and promoting has grown from 17.2 lakh in January to 55.four lakh in September 2019, in response to a analysis by cybersecurity agency Kaspersky. Kaspersky mentioned its merchandise protected greater than 1.four crore customers from makes an attempt to permit web sites to point out undesirable notifications.
Browser push notifications have been launched a number of years in the past as a useful gizmo that saved readers knowledgeable with common updates, however at the moment they’re usually used to bombard web site guests with unsolicited adverts and even encourage them to obtain malicious software program.
Useful user-friendly options, reminiscent of push notifications, are easy-to-use devices for scams primarily based on social engineering methods, and subsequently their rising recognition will not be completely sudden.
“We have seen a rise in push notifications being abused, as attackers continue to creatively adapt new technologies in order to trick users. Because this feature is so widespread and easy to take advantage of through social engineering schemes, we have seen a rapid growth in the number of affected users,” Artemy Ovchinnikov, safety researcher at Kaspersky, mentioned in an announcement.
“Push notifications are a very useful tool for users that help them stay on top of important things that interest them. Yet, as with anything on the Internet, users have to remain attentive and cautious when interacting with pop-ups and only allow push notifications if they are completely sure the alerts are useful and come from trusted sources,” Ovchinnikov added.