Windows 10: Malvertising attack on Microsoft Games

Discus and support Malvertising attack on Microsoft Games in AntiVirus, Firewalls and System Security to solve the problem; The have been a number of reports of fake virus warnings when using Microsoft Games (and possibly other apps) as shown in screenshot below>>>... Discussion in 'AntiVirus, Firewalls and System Security' started by bhringer, Jun 2, 2019.

  1. bhringer Win User

    Malvertising attack on Microsoft Games


    The have been a number of reports of fake virus warnings when using Microsoft Games (and possibly other apps) as shown in screenshot below>>>


    Malvertising attack on Microsoft Games 456e14f3-e959-452d-bcd7-f6b1b9575961?upload=true.png


    As reported in German MC there may be otherfake offers for prize redemption.

    https://answers.microsoft.com/de-de...iten-mit/62d2039d-8c3a-4684-a994-d43cff7bd7ab



    Currently, it occurs more that 10 malicious banner ads are called at the start or the use of apps on Windows, open the fraud Web pages in the default browser.

    These websites either promise prizes in a lottery or threaten that the PC with viruses is contaminated. Both are nonsense.


    It's not local malicious software on the PC! As a result, it is not necessary to install any tools to scan or to install the system at all.


    As long as you just close the window without confirming any questions to start scans or to pick up winnings, the thing is without consequence. The apps include advertising banners on external networks. About this, also repeated fraudulent banner apparently delivered in addition to normal advertising. Apparently, the operators of these ad networks have their deliveries still not under control. Such things appear every now and then in the Web browser. There, they can at least block through the use of an adblockers.


    The relevant Web pages should be reported via the browser as fraud page. Some of them are currently already by the Windows SmartScreen filter considered malignant. To solve the problem on the server side, the corresponding apps should not be used simply.


    Who has the ability to block advertising on DNS level, E.g. via a central adblocker on your network such as a Pihole, you should block these sites:

    *.adnxs.com
    *.nuxues.com

    *.vungle.com

    Currently Windows Defender Smartscreen is not recognizing this and therefore not blocking.

    The fake virus warnings eventually direct to a download page for Reimage Repair which is classified by Microsoft as potentially unwanted application (PUA) but not detected as malware by Windows Defender at this time. A scan of the downloaded file at VirusTotal indicates nine different antivirus/antimalware programs detect it as malware and some may block the download or even the landing page for the download.

    https://www.virustotal.com/gui/file...a01da737d1b93fe0f16ba5e614e0e904c56/detection


    When the fake virus screen appears simply close the page (or tab). If page will not close open Task Manager (Ctrl + Shift + Esc) and kill the browser process (End Task)) As a precaution clear your browser cache and temporary internet files.


    ~bhringer


    Author's note: Several Microsoft apps/services (MSN Money, News and Weather) are scheduled to be discontinued June 3 and I speculate in the process some other services may have been left vulnerable in the process. Hopefully this issue is temporary and will be resolved shortly.

    For Windows 19 users, more information may be available at Feedback Hub (Windows key + F).

    :)
     
    bhringer, Jun 2, 2019
    #1
  2. DaveM121 Win User

    About Ransomware attack

    Here is Microsoft's Customer Guidance on the Ransomware Attack:

    • In March, we released a security update which addresses the vulnerability that these attacks are exploiting. Those who have Windows Update enabled are protected against attacks on this vulnerability. For those organizations who have not yet applied the
      security update, we suggest you immediately deploy Microsoft Security Bulletin MS17-010.

    • For customers using Windows Defender, we released an update earlier today which detects this threat as Ransom:Win32/WannaCrypt.
      As an additional “defense-in-depth” measure, keep up-to-date anti-malware software installed on your machines. Customers running anti-malware software from any number of security companies can confirm with their provider, that they are protected.

    • This attack type may evolve over time, so any additional defense-in-depth strategies will provide additional protections. (For example, to further protect against SMBv1 attacks, customers
      should consider blocking legacy protocols on their networks).

    For the full article,
    Click HERE
     
    DaveM121, Jun 2, 2019
    #2
  3. windows 10 microsoft games

    if uninstall the game then reinstall the game will I lose all my awards?
     
    rusty wheelchar, Jun 2, 2019
    #3
  4. Malvertising attack on Microsoft Games

    windows 10 microsoft games

    Hello,

    To better help you with your concern, kindly tell us the steps you have performed when uninstalling the game.

    In the meantime, we suggest that you perform the steps below to check if it will help us resolve your concern:

    • Click the Start button and then click Settings.
    • Choose System and then click Apps & features.
    • Click on the game you are referring to and then click the Uninstall button.
    We are looking forward to your response.
     
    Jamille Nar, Jun 2, 2019
    #4
Thema:

Malvertising attack on Microsoft Games

Loading...
  1. Malvertising attack on Microsoft Games - Similar Threads - Malvertising attack Microsoft

  2. dictionary attack

    in AntiVirus, Firewalls and System Security
    dictionary attack: every time I try to add an email account and add the pin, it wont let me due to a dictionary attack. I have no idea what to do. https://answers.microsoft.com/en-us/windows/forum/all/dictionary-attack/6b927fad-b486-4c34-99ce-6b453f3436a7"
  3. Microsoft On-Screen Keyboard / Key-logger Attacks

    in AntiVirus, Firewalls and System Security
    Microsoft On-Screen Keyboard / Key-logger Attacks: Somewhere I got the impression that use of Microsoft's On-Screen Keyboard made it more difficult for anyone (who managed to sneak Key-logger Malware onto my PC) to get at Data - such as Passwords, Log-in Info etc - if I typed it in using the Microsoft On-Screen Keyboard,...
  4. Microsoft On-Screen Keyboard / Key-logger Attacks

    in AntiVirus, Firewalls and System Security
    Microsoft On-Screen Keyboard / Key-logger Attacks: Somewhere I got the impression that use of Microsoft's On-Screen Keyboard made it more difficult for anyone (who managed to sneak Key-logger Malware onto my PC) to get at Data - such as Passwords, Log-in Info etc - if I typed it in using the Microsoft On-Screen Keyboard,...
  5. Cannot uninstall Snap Attack (Windows 10 store game)

    in Windows 10 Software and Apps
    Cannot uninstall Snap Attack (Windows 10 store game): The Snap Attack game (a.k.a. "Wordament Snap Attack") was retired as of May 18, 2018. The game can no longer be played (online or offline) and is no longer available for download. Given this, I see no need to keep it on my system. Operating system: Windows 10 Home...
  6. Phishing attacks

    in AntiVirus, Firewalls and System Security
    Phishing attacks: Since purchasing a new Windows 10 / Edge PC less than a month ago, it has undergone two phishing / malware attacks. The perpetrators would like you to think that their messages are Microsoft generated (I have screenshots if anyone is interested). Note that both Windows...
  7. malware attack

    in AntiVirus, Firewalls and System Security
    malware attack: hello everyone my pc was under malware attack when I noobishly turned windows defender off .i saw several pop up and a weird search bar appeared on sereen.I had malwarebyte installed and I started searching with it.it detected 72 malware and i deleted all ,but the weird...
  8. Petya Attack.

    in AntiVirus, Firewalls and System Security
    Petya Attack.: There is a new pain in the neck in the wild. Last month it was the “WannaCry” virus wreaking havoc over the internet, and now this week another ransomware exploit is rapidly expanding across Europe and the Ukraine especially. The new variant, dubbed “Petya,” uses the...
  9. Virus Attack

    in Windows 10 Backup and Restore
    Virus Attack: Good Day We had an virus attack by this one ( Dharma ,very all files encrypted and ended with .java extension.) No decryption as off yesterday . " all your data has been locked usYou want to return?write email L: GuardBTC@cock.li " :-) I managed via data recovery do...
  10. Microsoft - Customer Guidance for WannaCrypt attacks

    in Windows 10 News
    Microsoft - Customer Guidance for WannaCrypt attacks: Microsoft solution available to protect additional productsToday many of our customers around the world and the critical systems they depend on were victims of malicious “WannaCrypt” software. Seeing businesses and individuals affected by cyberattacks, such as the ones...