1. Forum
  2. tqwNet
  3. TQW GENTECH

  • This tax-themed malvertising attack can blind security software b

    From TechnologyDaily@1337:1/100 to All on Tuesday, March 24, 2026 19:15:34
    This tax-themed malvertising attack can blind security software before it arrives and then unleashes ransomware

    Date:
    Tue, 24 Mar 2026 19:00:00 +0000

    Description:
    If you're rushing to file your taxes, be extra careful - crooks are betting
    on your sloppiness.

    FULL STORY ======================================================================Copy link Facebook X Whatsapp Reddit Pinterest Flipboard Threads Email Share this article 0 Join the conversation Follow us Add us as a preferred source on Google Newsletter Tech Radar Pro Are you a pro? Subscribe to our newsletter Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed! Contact me with news
    and offers from other Future brands Receive email from us on behalf of our trusted partners or sponsors By submitting your information you agree to the Terms & Conditions and Privacy Policy and are aged 16 or over. You are now subscribed Your newsletter sign-up was successful An account already exists for this email address, please log in. Subscribe to our newsletter Hackers exploit US Tax Day rush with phishing and malware Fake tax form sites via Google Ads drop ScreenConnect and disable defenses Campaign sets stage for ransomware, also seen with fake Chrome updates Cybercriminals are once again taking advantage of the short deadline for the upcoming tax filing window to deploy malware and ransomware to peoples computers, experts have warned.

    The April 15 tax deadline, also simply called Tax Day, is the last day most Americans have to file their federal income tax return and pay any taxes they owe. Since many wait until the very last moment to address this problem, they rush to get it done and, as security researchers Huntress say, trust the
    first Google result they see. Article continues below You may like Hackers
    are targeting taxpayers as they file - here's what to look for Who's watching who? Experts reveal criminals using fake enterprise software to gain access
    to company systems Watch out - that Google Tasks email could be a scam, and land you in hot water at work No bragging rights Huntress says it is seeing
    an increase in people searching for specific US tax forms, such as W-2 or
    W-9. Hackers are leveraging this fact, creating fake landing pages and promoting them through Google Ads.

    Therefore, when people search for these terms, they often land on malicious pages where they are served ScreenConnect (now commonly branded as
    ConnectWise Control), a legitimate remote access tool often used for
    malicious purposes.

    The researchers are saying the attack targets all sorts of people, from employees, freelancers, and contractors to small businesses. Before running the remote access tool, the attackers first drop a kernel driver that
    disables security tools such as Windows Defender.

    Across our customer base, we reported over 60 instances of rogue
    ScreenConnect sessions tied to this campaign being used as the initial access vector, Huntress stressed. Are you a pro? Subscribe to our newsletter Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features
    and guidance your business needs to succeed! Contact me with news and offers from other Future brands Receive email from us on behalf of our trusted partners or sponsors By submitting your information you agree to the Terms & Conditions and Privacy Policy and are aged 16 or over.

    While the tax-themed lure is currently trendy, its not the only method being used. Huntress says it also saw a fake Chrome update page with JavaScript comments in Russian, suggesting a broader social engineering toolkit and a Russian-speaking developer.

    The campaign seems to be just the first step in a multi-stage attack. At this stage, the crooks are establishing a foothold and harvesting credentials, likely in preparation of ransomware deployment. The best antivirus for all budgets Our top picks, based on real-world testing and comparisons

    Read our full guide to the best antivirus 1. Best overall: Bitdefender Total Security 2. Best for families: Norton 360 with LifeLock 3. Best for mobile: McAfee Mobile Security Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds. Make sure to click the Follow button!

    And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form, and get regular updates from us on WhatsApp too.



    ======================================================================
    Link to news story: https://www.techradar.com/pro/security/this-tax-themed-malvertising-attack-can -blind-security-software-before-it-arrives-and-then-unleashes-ransomware


    --- Mystic BBS v1.12 A49 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)