[HEADS UP] Allowing Site Notifications Can be Very Costly

Krebs on Security reported that there have been an increasing number of websites asking visitors to approve ‘notifications’. In most cases these notifications are not malicious, but several firms are paying site owners to install notification scripts to sell to scammers.

Normally, a website will ask permission to send notifications (as long as you approve the request), which results in messages that pop up outside of your browser. Krebs lists an example, “Microsoft Windows systems they typically show up in the bottom right corner of the screen — just above the system clock. These so-called “push notifications” rely on an Internet standard designed to work similarly across different operating systems and web browsers.”

Unfortunately many users do not know what they are signing up for to when notification are approved. It’s also nearly impossible for a user to tell the difference between a notification sent by a website or one that is made to appear by another program that could be using this information against you.  

For reference, here is what a general pop up looks like: 

It’s important to teach your users to be suspicious of any activity on their workstations, including allowing websites to show notifications. New-school security awareness training can ensure your users know how to stay alert and apply best practices in their day to day tasks. 

Krebs has the full story


SOURCE: KnowBe4.com

President, Manufacturing Company

We are high speed and wireless with computer systems for everything we do. I do not worry at all because it has not been an issue since IT360 became a part of our company.

President, Manufacturing Company

Recent
Technology News

IT360 News
Vaccine Research Companies are the Target of New Ransomware Attacks

The U.S. Treasury Department’s Financial Crimes Enforcement Network (FinCEN) warns financial organizations to be aware of campaigns actively targeting vaccine companies If you’re a ransomware gang and you want to maximize your ransom, who do you attack? An organization working feverishly to potentially make billions of dollars via a desperately needed vaccine, of course! Take […]

Read more
IT360 News
[HEADS UP] Allowing Site Notifications Can be Very Costly

Krebs on Security reported that there have been an increasing number of websites asking visitors to approve ‘notifications’. In most cases these notifications are not malicious, but several firms are paying site owners to install notification scripts to sell to scammers. Normally, a website will ask permission to send notifications (as long as you approve […]

Read more