LiveZilla Live Chat Software
260-422-3979    Get SUPPORT

Technology Specialists Blogs

There’s Nothing “Smashing” About the Nigelthorn Malware

There’s Nothing “Smashing” About the Nigelthorn Malware

Once again, there is an example of why all users need to be careful about what they install. This time, however, users of the Google Chrome browser are the ones being specifically targeted by a particularly nasty attack known as “Nigelthorn.”

Nigelthorn’s Method of Attack
When scrolling on Facebook, a user may see what appears to be a link to a YouTube video, but is actually a fake. This fraudulent video will then inform the user that in order for it to be played, an extension from the Chrome Web Store, called “Nigelify,” has to be installed. In reality, installing the extension allows the malware into the user’s system.

In order to fool its way past the Chrome Web Store defenses, Nigelthorn’s code is implanted into an extension that has already passed the Web Store’s checks. The first extension to be infected was one called “Nigelify,” which would replace all the pictures on the page a user was viewing with images of Nigel Thornberry, a late 1990’s/early 2000’s cartoon character who has found new life as a meme.

Once Nigelthorn is installed, it can have various effects on the infected system. For instance, not only will this attack vector steal the data that is available through Facebook, it will also share itself via Facebook Messenger, or by tagging the original victim’s friends. This makes it very effective at spreading from victim to victim, as all it takes it to infect the next person in line is for them to install the infected extension as well.

Nigelthorn has also been found to use other common tools that are found in malware in order to accomplish the goal of its developer, including cryptomining and YouTube manipulation for financial gain.

Getting Rid of Nigelthorn (and Avoiding It in the First Place)
What’s worse is that once Nigelthorn has been installed, it is notoriously hard to get rid of. If you have inadvertently installed Nigelthorn, it will automatically close the extensions panel, preventing you from uninstalling it. This means that removing it will likely require you to uninstall Chrome. If you are unlucky enough to be infected, you should change your Google and Facebook credentials in case they were stolen by the malware.

As for avoiding Nigelthorn, the surest is to not click on the link. As long as the user in question knows not to click on fishy links or install additional extensions willy-nilly, using Chrome is still workably safe.

For more information about potential threats to your business’ cybersecurity, and how to stop them, keep reading out blogs, and don’t hesitate to call us at 260-422-3979 for more help.

Tip of the Week: How to Add a Watermark in Microso...
Considering the Future of Wireless Charging
 

Comments

No comments made yet. Be the first to submit a comment
Already Registered? Login Here
Guest
Friday, February 22 2019

Captcha Image

Newsletter Sign Up

  • Company Name *
  • First Name *
  • Last Name *

      Tag Cloud

      Security Tip of the Week Technology Small Business Privacy Communication Saving Money Efficiency Best Practices Computer Passwords IT Services Tech Term User Tips Managed IT Services Internet Microsoft Email Data Network Security Microsoft Office Upgrade Social Media Business Hardware Data Backup Mobile Devices IT Support Managed Service Workplace Tips Data Recovery Information Employer-Employee Relationship Software Productivity Google Hackers Company Culture Productivity Users Website Backup Network Ransomware Hosted Solutions Business Continuity Managing Stress Digital Signage Cloud Co-Managed IT PowerPoint Wireless Mobile Device Windows 10 Content Filtering Disaster Recovery Business Computing Internet of Things Update Money Onboarding Word Charging Laptop Managed IT services Applications FinTech Save Money Analytics Operating System Monitoring Malware Touchscreen MSP Marketing Communications Content Cloud Computing Gadgets Business Intelligence Display Spying Facebook Desktop Maintenance Browser Streaming Development BYOD Slack Innovation Analysis LED Office 365 Employee-Employer Relationship Troubleshooting Miscellaneous Quick Tips Mobile Office Domains Smartphones Cortana Spam Compliance Printers Mobile Device Management Public Speaking VoIP Managed Service Provider Two-factor Authentication Regulation Presentation Wi-Fi Lithium-ion battery Hiring/Firing Augmented Reality Windows 10 Tech Support Fun Wireless Technology 5G IBM Apps Safety The Internet of Things Hacker Remote Monitoring Budget Virtualization Customer Relationship Management Competition Big Data IP Address Hard Drives Search Server Customer Service

      Mobile? Grab this Article!

      QR-Code dieser Seite