Foodisgood.xyz

Potentially Unwanted Programs (PUPs) are applications that may not be explicitly unsafe but can cause issues by altering user experiences or displaying unwanted behavior. They often come bundled with legitimate software or disguised as useful tools.

Recently, security researchers came across Foodisgood.xyz, a deceptive search engine linked to a exactly such PUP called FoodIsGood Default Search. This application operates as a browser extension with hijacking capabilities, enabling it to modify browser settings forcefully. As a result, users are directed to the Foodisgood.xyz webpage against their will through constant redirects.

Users Will Find Foodisgood.xyz Taking the Place of Their Usual Browser Settings

Browser hijackers are software tools designed to modify various browser settings, including homepages, default search engines and new tab pages. These modifications force users to visit specific websites when they perform searches or open new browser tabs or windows. For instance, FoodIsGood Default Search redirects users to the foodisgood.xyz site.

Typically, fake search engines like foodisgood.xyz fail to provide genuine search results and instead redirect users to legitimate search engines like Bing. However, the destination of these redirects may vary based on factors such as user location.

To ensure persistence and hinder removal, browser hijackers often employ tactics like blocking access to removal settings or reversing user changes made to the browser.

Moreover, these types of software often incorporate data-tracking functionalities, potentially including FoodIsGood Default Search. This can involve gathering various types of user data such as visited URLs, search queries, cookies, login credentials, personal information, financial data and more. Such sensitive information might be shared with third parties or sold for various purposes.

PUPs Try to Conceal Their Installations via Shady Tactics

PUPs often employ shady tactics to conceal their installations and make it difficult for users to detect or remove them. Some common tactics include:

• Bundling with Freeware: PUPs are frequently bundled with legitimate free software downloads. During the installation process, users may overlook or hastily click through installation screens, unaware that they are also agreeing to install additional programs.
• Misleading Installation Methods: PUPs may use misleading installation dialogs or checkboxes that are pre-selected by default, tricking users into unknowingly installing them alongside desired software.
• Cloaking in Legitimacy: PUPs may present themselves as useful or legitimate software to entice users into installing them. They might claim to enhance browsing experience, offer system optimization, or provide security features while their actual purpose is to display advertisements or collect user data.
• Aggressive Advertising: PUPs may use aggressive advertising techniques, such as pop-ups claiming that the user's system is infected with viruses or displaying misleading messages to prompt users to install additional software.
• Automatic Downloads: Some PUPs initiate automatic downloads or installations without clear user consent. Users might unknowingly trigger these downloads by clicking on deceptive ads or visiting compromised websites.
• Social Engineering Tactics: PUPs may use social engineering tactics, such as fake alerts or warnings, to convince users to install them. These alerts might claim that the user's browser is out-of-date, or that their system is at risk, leading users to download the PUP for supposed protection.

By employing these tactics, PUPs try to evade detection and gain access to users' systems, often causing unwanted changes to browser settings, displaying intrusive ads, or collecting sensitive user information without consent.