• 所有社区 - 中文
    • 所有社区 - 中文
    • 论坛
    • 创意
    • 博客
高级

不是您要找的? 咨询专家!

此论坛帖文需要解决方案。
好评0

Why doesn't Norton block the fake 'urgent Chrome Update' message?

Why does Norton allow this fake Chrome message through? It takes over my screen every now and then, and I've almost clicked on it. I can't understand how it gets through. Is there anything I should be doing? But I would expect Norton to stop it.

回复

好评0

Re: Why doesn't Norton block the fake 'urgent Chrome Update' message?

Hello Grug

After running Live Update and doing a full system scan, you can stop over at Malwarebytes and get the free version of the program. Don't get the free trial of the premium program. Remember to update the program and then run a full scan. You can also go into Safe Mode with Networking and do a full scan with your Norton program and see if it catches anything.

There are a few suggestions in that paragraph. Maybe one of those will catch that virus. If none of them work, then we have something else in mind.

Thanks.

Success always occurs in private and failure in full view. Windows 10 Pro 64 bit Norton Core Security Plus 22.18.0.213 Core Firmware 282 I E 11 Chrome latest version.
好评2 Stats

Re: Why doesn't Norton block the fake 'urgent Chrome Update' message?

This usually pops up when you visit a site with an infected ad. Norton does not stop redirects, which is basically what this is.

You can try adding an ad blocker to your browser to help stop this from happening.

Things happen. Export/Backup your Norton Password Manager data.
好评4 Stats

Re: Why doesn't Norton block the fake 'urgent Chrome Update' message?

And the reason Norton does not block redirects is because they are not in themselves malicious - in fact, most of them are benign.  An ad blocker, as suggested, or changing Chrome's settings to block JavaScript by default (which you then allow on a site-by-site basis) would help prevent these sorts of things.

好评0

Re: Why doesn't Norton block the fake 'urgent Chrome Update' message?

Thanks for the suggestions so far, but I don't think that's the answer. Just now I left my laptop signed on to Yahoo Mail. On my return, the fake Chrome page had supplanted my mail screen. I have now tried blocking the address on the Yahoo "blocked addresses", but only time will tell whether this works as the fake chrome screen pops up randomly and not very often (but is very annoying when it does!).

The address appears to be shaimlot-tissimo.org 

好评0

Re: Why doesn't Norton block the fake 'urgent Chrome Update' message?

If you are on Yahoo's site, the ads probably revolve. So while you were gone, a new one that has the fake Chrome update pop up was probably cycled in. 

Did you try installing an ad blocker or blocking JavaScript as suggested already?

Things happen. Export/Backup your Norton Password Manager data.
好评0

Re: Why doesn't Norton block the fake 'urgent Chrome Update' message?

I would consider this ad massively inappropriate from any advertiser under any circumstances (let alone when signed into mail). I think that Norton should detect ads like this (and the code that directed to them) as malicious and block them. Just because it is by social engineering rather the exploit code doesn't make it any less malicious.

This is either something going on in your computer (like ad/junkware) or an example of people allowing ads to be run (yahoo in this case) don't care what ads they run (or who they harm) as long as they get paid to run them.

I think web ads should run in frames with security="restricted" set (IE) and/or and with "sandbox" set (all browsers), this would prevent all scripting in ads. (the advertisers can rotate their ads with server side code)

好评0

Re: Why doesn't Norton block the fake 'urgent Chrome Update' message?

password_password:

I think that Norton should detect ads like this (and the code that directed to them) as malicious and block them. Just because it is by social engineering rather the exploit code doesn't make it any less malicious.

Norton does block many of these.  No product will ever catch 100% of them.

好评0

Re: Why doesn't Norton block the fake 'urgent Chrome Update' message?

SendOfJive:
password_password:

I think that Norton should detect ads like this (and the code that directed to them) as malicious and block them. Just because it is by social engineering rather the exploit code doesn't make it any less malicious.

Norton does block many of these.  No product will ever catch 100% of them.

I understand that it won't always be detected (even if in hindsight it meets detection criteria). My point is that if a redirect (or any way of loading content) leads to malicious content the code initiating the redirect is likely complicit.

When a bad guy can buy ad space that loads first from the advertiser, then loads his dynamic from his own server that serves malware to his targets, and "See, I'm perfectly innocent code" those who would flag the ad (antivirus analysts, the primary advertiser's auditing, etc..) then something is wrong with the whole model.

The ad code should be static client side and dynamic server side, controlled by the primary advertiser. Potentially malicious secondary advertisers (example: for a banner ad) would send the ad images and click through destinations (and maybe criteria for what/when to display) to the primary advertiser who would deliver the ad to client side in a static form. The potential mal-advertiser would have no way run dynamic code on anyone simply viewing the ad.

https://msdn.microsoft.com/en-us/library/ms534622(v=vs.85).aspx
https://www.w3schools.com/tags/att_iframe_sandbox.asp

This thread is closed from further comment. Please visit the forum to start a new thread.