NewEngine

It is more crucial than ever to protect your devices from intrusive and untrustworthy software, particularly Potentially Unwanted Programs (PUPs). These programs often masquerade as legitimate tools or helpful applications but can wreak havoc on your system. One such threat, a browser hijacker known as NewEngine, exemplifies the dangers these programs pose. Designed to alter browser settings and promote dubious websites, NewEngine can lead to severe privacy risks, financial losses, and even identity theft. Understanding the behavior, distribution tactics, and potential consequences of such software is essential for maintaining your digital security.

The NewEngine Browser Hijacker: A Risk to Your Online Experience

NewEngine is a rogue browser extension that functions as a browser hijacker, discovered during the analysis of the installation setup for the NeverSleep PUP. Once installed, NewEngine modifies critical browser settings to promote the search-secured.com website. This fake search engine is forcibly set as the default search engine, homepage, and new tab page in the user's browser, meaning that every new tab or Web search is redirected to search-secured.com.

The search-secured.com site does not generate original search results. Instead, it redirects users to other dubious search engines like trustedsear.ch, which may eventually land on legitimate sites such as Yahoo (search.yahoo.com). However, these redirects could change based on factors such as the user's geolocation, leading to a potentially unpredictable and unsafe browsing experience.

Persistence and Data Collection: NewEngine’s Hidden Dangers

NewEngine doesn't just stop at altering browser settings; it employs persistence mechanisms to prevent users from restoring their browsers to normal. This includes blocking access to settings related to removal or undoing changes made by the user, making it difficult to remove the hijacker manually.

Moreover, NewEngine, like many browser hijackers, is likely equipped with data-tracking capabilities. It can collect sensitive information such as visited URLs, search queries, viewed Web pages, browser cookies, and even personal data like account log-in credentials and financial information. This harvested data may then be shared with or sold to third parties, putting users at risk of privacy breaches and financial fraud.

The Deceptive Distribution Tactics of PUPs and Browser Hijackers

NewEngine's distribution is as devious as its behavior. It was found bundled with the NeverSleep PUP, available for download from an official-looking promotional Web page. However, the methods used to distribute browser hijackers like NewEngine extend far beyond simple downloads.

• Bundling with Legitimate Software: One common tactic is bundling browser hijackers with legitimate software. Users may inadvertently install the hijacker when downloading programs from dubious sources such as freeware sites, peer-to-peer sharing networks, or free file-hosting services. Often, users opt for 'Express' or 'Easy' installation settings, which can lead to bundled software being installed without the user's explicit consent.
• Malicious Advertising and Redirects: Another widespread method involves fraudulent advertising and redirects. Websites using rogue advertising networks may bombard users with intrusive ads, mistyped URLs, or spam browser notifications that lead to the installation of browser hijackers. Even a simple click on a deceptive ad can trigger a script that downloads and installs the hijacker in the background, without the user's knowledge.

Protecting Yourself against Browser Hijackers

To avoid falling victim to threats like NewEngine, it is crucial to embrace a proactive attitude to cybersecurity:

• Be Cautious with Downloads: Only download software from reputable sources and always opt for custom installation settings. This allows you to deselect any bundled software that might be included.
• Use Robust Security Software: Employ comprehensive security solutions that can detect and block PUPs, adware, and other unsafe software before they compromise your system.
• Stay Informed and Vigilant: Regularly update your knowledge about the latest cybersecurity threats. Awareness is the first line of defense against the evolving tactics used by cybercriminals.
• Regularly Update Your Software: Keeping your browser and anti-malware software up to date ensures that you have the latest protections against newly discovered vulnerabilities and threats.

By understanding the risks posed by browser hijackers like NewEngine and taking steps to protect your devices, you can maintain a safer and more secure online experience.