Cool Facts Browser Extension
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
| Ranking: | 4,816 |
| Threat Level: | 50 % (Medium) |
| Infected Computers: | 126 |
| First Seen: | March 22, 2023 |
| Last Seen: | September 29, 2023 |
| OS(es) Affected: | Windows |
During an investigation into rogue websites, the researchers discovered Cool Facts, a browser extension that claims to provide users with interesting facts and customizable wallpapers, world clocks, or other content for their new browser tabs. However, upon inspecting the extension, it was revealed that Cool Facts functions as a browser hijacker, which means it modifies browser settings, causes redirects, and likely monitors browsing activity without the user's consent.
The Cool Facts Browser Hijacker may Cause Intrusive Redirects
After being installed, Cool Facts alters the browser's default search engine, homepage, and new tab to a promoted website. While browser-hijacking software typically assigns these settings to fake search engines that cannot generate search results and instead redirect to genuine ones, Cool Facts instead changed these settings to Bing (bing.com). As a result, any attempt to open a new browser tab or window or perform a search query through the URL bar will result in redirects to the legitimate Bing search engine.
It is not uncommon for cybercriminals, including browser hijacker developers, to promote genuine sites for the purpose of obtaining fraudulent commissions through the abuse of affiliate programs. However, it should be noted that Cool Facts may also be able to cause redirects to other websites.
Moreover, the Cool Facts likely collects sensitive information, including visited URLs, viewed pages, searched queries, Internet cookies, or potentially even usernames and passwords, personally identifiable details, and finance-related information. This data may be sold to third parties or otherwise exploited for profit. Like many other browser hijackers, Cool Facts may be equipped with techniques to ensure its persistence, which could make its removal from a system more difficult.
Users Should Exercise Caution When Downloading Applications from Dubious Sources
The distribution of Potentially Unwanted Programs (PUPs) typically relies on a variety of questionable techniques. One of the most common methods is through bundling, where PUPs are packaged with legitimate software installers and installed together without the user's knowledge or consent.
Another technique is through misleading or deceptive advertising, such as displaying fake error messages or pop-ups that claim the user's system is infected with a virus or needs an update, and then offering the PUP as a solution. PUPs can also be distributed through social engineering tactics, such as enticing users to download and install a fake antivirus or system optimizer through email or social media scams.
In some cases, PUPs can be installed through vulnerabilities in outdated software or through malicious websites. Overall, PUP distributors often rely on deceptive tactics to trick users into downloading and installing their software, and users should exercise caution when downloading and installing any software, especially from unknown sources.
