How to advise clients with regard to browser notification scamware?

[britechguy]

Just had a client call me regarding constant pop-ups screaming about viruses on his computer (which he recognized as bogus and did not interact with other than to dismiss, which was futile). Both had their origin in browser notifications from MS-Edge and their origin with 2 domains out of India. What was funny (in a perverse way) is one was touting McAfee and the other, Norton.

It didn't take me too long after a single AI search to get this all straightened out, but I honestly have no idea what the client did in the first place to get these things into place, and he seemed not to, either. While this is not the most tech savvy client, he's not a panicked button clicking sort, either.

If someone can describe how an end user is enticed into "installing" (for lack of a better term) these things, I'd love to have a description that I can share with clients if/when this pops up. I haven't encountered one of these in quite some time, let alone two on one machine.

 

[seashore]

This is one of my most common customer calls these days.

Customer visits a website which has been configured to pop up the browser message "Do you want to allow notifications?" They click Yes, then are plagued by fake AV popups.

After fixing, I ask for the customer's permission to disable notifications on all browsers to avoid a recurrence. No more popups.

 

[thecomputerguy]

This is one of my most common customer calls these days.

Customer visits a website which has been configured to pop up the browser message "Do you want to allow notifications?" They click Yes, then are plagued by fake AV popups.

After fixing, I ask for the customer's permission to disable notifications on all browsers to avoid a recurrence. No more popups.

Something has happened in the last few weeks. This used to be a once every few days or once a week call, now it's much more frequent, sometimes multiple times a day. I'm not sure why the increase.

I charge an hour of labor to remove the notifications from chrome/edge, disable notifications, add ublock lite, check appwiz.cpl for junk, check services for screenconnect, then update windows.

 

[HCHTech]

Something has happened in the last few weeks. This used to be a once every few days or once a week call, now it's much more frequent, sometimes multiple times a day. I'm not sure why the increase.

Yes, we're seeing a few of these each week. For managed customers, we have a script to disable browser notifications each day...one of several in the category of scammer defense. There is always something new, it seems.

 

[britechguy]

we have a script to disable browser notifications

Would you mind sharing? I can already predict this trend wreaking havoc for my blind clients, and it would be great to have a script that went through "the list of commonly installed browsers," checking if each was installed, and making the settings tweak to disable notifications for any that are present on the system.

I'll also give Claude a whirl at generating this, too.