'Total AV Security - Your Smartphone is Infected' Pop-Up Scam

During their investigation of suspicious websites, infosec research discovered a Web page that promotes the 'Total AV Security - Your Smartphone is Infected' scam. This fraudulent page falsely asserts that the smartphones of visiting users are contaminated with five viruses or malware threats. It is imperative to highlight that this scam bears no affiliation whatsoever with the authentic TotalAV anti-virus software.

The 'Total AV Security - Your Smartphone is Infected' Pop-Up Scam Scares Users with Fake Security Alerts

When researchers analyzed the Web page carrying out the 'Total AV Security - Your Smartphone Is Infected,' the deceptive content started immediately with a fabricated system scan. Following this, a pop-up window appears, displaying a supposed threat report.

The pop-up falsely indicates that the smartphone devices of visitors are contaminated with five viruses. These non-existent malware infections purportedly engage in tracking internet activities and illicitly harvesting sensitive data, including financial information and login credentials. The tactic further asserts that devices lacking protection are 93% more susceptible to infections. The fraudsters then claim that the user's subscription for the 'Total AV Security' has lapsed and encourage visitors to renew it.

It is of utmost importance to emphasize that all the assertions made by this scheme are entirely baseless, and bears no connection whatsoever to the legitimate TotalAV software. Furthermore, it should be noted that websites do not possess the capability to execute system scans or detect threats on visitors' devices.

In most instances, frauds of this nature serve as conduits for endorsing dubious and harmful software, such as counterfeit security programs, adware, browser hijackers and Potentially Unwanted Programs (PUPs). In rare occurrences, we have even encountered cases where such tactics propagated Trojans, ransomware and other forms of malware.

Alternatively, deceptive content might redirect users to the official websites of legitimate products or services. In these scenarios, con artists strive to illicitly earn commissions by promoting products through unauthorized means.

Websites Lack the Capability to Scan Users' Devices for Malware Threats

Websites lack the capability to directly scan users' devices for malware threats due to several technical and privacy limitations. Here's why websites are incapable of performing such scans:

• Limited Access: Websites operate within the confines of Web browsers and Web technologies, which restrict their access to the underlying operating system and device files. This limited access prevents them from conducting deep scans of a device's files and processes.
•  Browser Sandbox: Web browsers employ a feature known as a 'sandbox' to isolate Web content from the underlying operating system. This sandboxing prevents websites from interacting with or affecting the rest of the device's functions, including running scans for malware.
•  Security and Privacy Concerns: Allowing websites to scan devices for malware would raise significant security and privacy concerns. It could potentially expose sensitive user data to the website operator or even unsafe Web pages posing as legitimate websites.
•  Resource Limitations: Conducting a thorough malware scan requires substantial computing resources and processing power. Websites are designed to provide content and services through browsers, and they lack the necessary resources to perform resource-intensive tasks like malware scanning.
•  Varied Device Environments: Devices used to access websites vary widely in terms of operating systems, hardware and configurations. Creating a universal scanning mechanism that works across all devices is highly complex and impractical.
•  User Consent: Running scans on users' devices without explicit consent would infringe on user privacy and control. Websites cannot perform such actions without clear and informed consent from users.
•  Legal and Ethical Considerations: Scanning users' devices without permission could potentially lead to legal issues and ethical concerns. Unauthorized access to a user's device is a breach of user trust and privacy.

While websites cannot directly scan users' devices for malware threats, they can still provide valuable information and resources to help users protect themselves against malware. Websites can offer educational content about safe online practices, recommend reputable anti-malware solutions, and provide guidelines for identifying and addressing potential threats.