Windows users are being warned about a new scam targeting them through fake software updates. Cyber attackers are luring users to deceptive websites resembling official Microsoft pages, where they are prompted to download what appears to be a legitimate Windows update. In reality, the downloaded file contains harmful malware designed to steal sensitive information like passwords and payment details.
According to cybersecurity experts at Malwarebytes, the scam involves websites mimicking Microsoft Support and Windows Update, replicating Microsoft’s branding and design to deceive users effectively. Users are advised not to click on any suspicious update links but instead verify updates directly through the Windows Update section in Settings.
The fake updates are designed to appear genuine, making it difficult for users and some security software to detect the malicious intent. While the current targets seem to be primarily in France, experts caution that the scam could spread rapidly, urging all Windows users to exercise caution and avoid downloading suspicious updates.
To protect themselves, users are advised to never trust update links from emails, texts, or social media. The safest method to install updates is through the Windows’ built-in update system by going to Settings > Windows Update and selecting “Check for updates.” Users should be cautious of any website offering Windows updates as separate downloads and are encouraged to enable automatic updates to minimize the risk of falling victim to fake update scams.
Windows 11 users are particularly reminded to be vigilant against unexpected messages urging immediate updates. Installing software only through official Microsoft channels is emphasized as the most effective defense against such malicious attacks.
