The Cryptology Browser Extension

The Cryptology browser extension offers users real-time updates on cryptocurrency price charts, catering to individuals interested in the world of cryptocurrencies. Researchers stumbled upon this software during an investigation into suspicious websites. Upon closer examination, experts determined that The Cryptology functions as a browser hijacker. In particular, this extension modifies browser settings to promote the use of the fake search engine thecryptology.icu, all while surreptitiously collecting sensitive user data.

Browser Hijackers Like The Cryptology May Perform Numerous Unauthorized Changes

The Cryptology extension takes control of various aspects of users' browsers, including default search engines, homepages, and new tab pages, redirecting them to thecryptology.icu. As a result, opening new tabs or entering search queries in the URL bar leads to automatic redirection to this specific Web page.

Typically, fake search engines lack the capability to generate search results and often direct users to legitimate search engines. In the case of thecryptology.icu, it redirects to the Bing search engine, though this may vary based on user geolocation.

Browser-hijacking software employs tactics to ensure persistence, making it challenging for users to remove unwanted changes. This can involve blocking access to removal-related settings or reversing any changes made by the user to thwart browser recovery.

The Cryptology likely possesses data-tracking functionalities, a common characteristic of browser hijackers. The information it may collect includes URLs visited, viewed Web pages, entered search queries, Internet cookies, usernames and passwords, personally identifiable details, financial data and more. This gathered data can be shared with or sold to third parties, raising concerns about user privacy and security.

Browser Hijackers Often Sneak Their Installation via Shady Distribution Tactics

Browser hijackers employ various shady distribution tactics to install themselves on users' systems sneakily. Some common methods include:

• Bundled Software:
• Browser hijackers often come bundled with seemingly legitimate software that users download from the Internet. Users may unknowingly agree to install the hijacker when installing the desired program.
•  Deceptive Installers:
• Some software installers use deceptive techniques, such as misleading dialog boxes or fine print, to trick users into unknowingly agreeing to the installation of additional, unwanted software, including browser hijackers.
•  Unsafe Websites:
• Users might encounter browser hijackers when visiting unsafe websites. These websites may prompt users to download or install certain software, disguising the browser hijacker as a legitimate application.
•  Fake Updates:
• Browser hijackers may pose as software updates or security patches. Users, thinking they are improving their system's security, unknowingly download and install the hijacker.
•  Email Attachments and Links:
• Some browser hijackers are distributed through malicious email attachments or links. Clicking on these attachments or links can trigger the installation process without the user's knowledge.
•  Social Engineering:
• Attackers may use social engineering techniques to persuade users to install a seemingly harmless application that, in reality, contains a browser hijacker. This could involve fake alerts, warnings, or enticing offers.
•  Freeware and Shareware:
• Browser hijackers may be bundled with free or shareware applications. Users who download and install these programs may inadvertently introduce a browser hijacker along with the intended software.
•  Untrustworthy Browser Extensions:
• Users might encounter browser hijackers in the form of seemingly useful browser extensions. These extensions may, over time, reveal their unsafe nature by altering browser settings and redirecting users to unwanted websites.

To protect against these tactics, users should exercise caution when downloading software, keep their software and operating systems updated, use reputable security software, and be wary of unexpected pop-ups, alerts, or emails that prompt them to download or install software.