There is an ongoing malware campaign involving Google Chrome, Mozilla Firefox, Microsoft Edge, and other browsers. The assault has impacted multiple browsers and is intended to insert advertising into search results and even incorporate malicious browser extensions.
A Microsoft blog post revealed that from May to September 2020, the organization registered hundreds of thousands of Adrozek malware experiences around the globe, according to Gadgets360. The software giant also monitored 159 distinct domains; each hosted an average of 17,300 unique URLs. This, in turn, hosted an average of more than 15,300 different polymorphic malware samples.
Also, by also silently adding on other malicious browser plugins, the malware accomplishes this. This switches the browser settings to inject advertising into web pages, where they would not be found otherwise. These advertisements can then be found on top of other legal search engine advertisements, and DLL modifications per target browser are also suspected. In more straightforward language, it will toggle on the browser’s security settings.
A Microsoft researcher said that the malware applies the same malicious scripts to those plugins, despite targeting multiple extensions for each browser. Browser modifiers have historically determined the hashes as browsers do and modified the Protected Preferences accordingly. Adrozek goes a step further and patches the credibility check feature that launches.
