Why that Google Meet error might be a sneaky hacker trick
A new scam called ClickFix is on the rise in the U.S. and is targeting users by prompting them to click on a link that claims to fix an issue but actually infects their computers with malware. Previously, threat actors used messages impersonating errors from Google Chrome, Microsoft Word, and OneDrive to infect users’ computers. Now, a similar type of attack is affecting Google Meet users, regardless of whether they are using a Windows PC or a Mac.
The cyberattack starts with an email containing a link to a Google Meet. The email may come from any address and could be designed to look like it is related to the recipient’s organization. When the user clicks on the link, they are directed to a fake Google Meet page that displays a warning claiming there is an issue with their PC. The page may say that the microphone or camera is not working or that there is a problem with the headset. The fake page also displays a pop-up offering to fix the issue, instructing the user to paste malicious code into the Windows prompt, infecting their computer with malware.
French cybersecurity company Sekoia has identified several URLs associated with these fake meeting emails, including meet[.]google[.]us-join[.]com and meet[.]google[.]web-join[.]com. In addition to Google Meet, Sekoia has uncovered malware distribution clusters targeting platforms like Zoom, PDF readers, fake video games, web3 browsers, and messenger apps.
McAfee has observed an increase in ClickFix campaigns, particularly in the U.S. and Japan. Groups such as Slavic Nation Empire and Scamquerteo are behind some of these attacks, which are believed to be offshoots of larger crypto scam gangs. It is essential for users to take steps to protect themselves from harmful software. These include having strong antivirus software, monitoring financial accounts for unauthorized activity, placing a fraud alert on credit files, and enabling two-factor authentication whenever possible.
Hackers are constantly devising new ways to trick users into installing malware. By being cautious of unknown links and verifying the legitimacy of emails and website prompts, users can protect themselves from falling victim to cyberattacks. It is crucial to stay informed about the latest cybersecurity threats and take proactive measures to safeguard personal information and devices.
