Attack Spotlight: Fake Browser Updates

Share this content in seconds -- simply copy and paste the following text into an email and send it to your end-users.

Email Subject:

Attack Spotlight: Fake Browser Updates

Email Body:


Be on the lookout for fake browser update messages that appear when you are online at work or at home. These messages claim your browser (Chrome or Internet Explorer, for example) is out of date and needs to be updated. Displayed logos will match the browser you are using, and the text in the window will prompt you to download a file in order to apply safety and security updates.  

Fake browser updates are dangerous. If you initiate a download, you will expose your device, your data and our organization to a cyber attack. 

The link below takes you to a brief (two-minute) module that shows an example of a fake update message and helps explain the techniques cybercriminals use to fool people. You can also read the attached PDF for more information. 

Link to module:

(Note: This link will take you to the website of Wombat Security, a division of Proofpoint.) 

Please familiarize yourself with this scam and remain alert. Fake browser updates could appear on any website, even those you visit frequently. If you encounter a suspicious message, be sure to report it to our IT team. 

Awareness Module >

Teachable Moments PDF>

*We recommend that you download the PDF and attach it to your email. If you prefer, you can also include a direct link to the PDF.

More Attack Spotlight Content

Attack Spotlight provides infosec professionals with free, actionable content designed to arm end users against the most relevant real-world phishing attacks and lures being seen in the wild.