Zombie New Tab Browser Extension

Information security experts uncovered the Zombie new tab browser extension during their investigation into unreliable websites. Upon closer examination, they found that it possesses typical traits of a browser hijacker. Specifically, the Zombie new tab extension alters browser configurations to endorse the illegitimate search engine spaceship-newtab.com through redirects. Such intrusive browser extensions often engage in monitoring users' online activities as well.

The Zombie New Tab Takes Over Crucial Browser Settings

The Zombie new tab extension configures spaceship-newtab.com as the default search engine, new tab pages and homepage within the browser. This alteration, typical of browser-hijacking software, can result in users being redirected to promoted websites whenever they open new tabs or conduct searches through the URL bar.

Typically, fake search engines lack the capability to provide genuine search results and instead redirect users to legitimate ones. In the case of spaceship-newtab.com, it redirects users to the Bing search engine. It's important to note that redirection destinations may vary based on factors like user geolocation.

Moreover, browser hijackers often employ techniques to ensure their persistence, making it difficult for users to revert their browsers to their original settings.

Additionally, software like the Zombie New Tab often possesses data-tracking capabilities. This may involve collecting various forms of sensitive data, including browsing and search engine histories, Internet cookies, login credentials, personally identifiable information, financial data and more. This data can be exploited for monetization through sale to third parties, posing a significant privacy risk to users.

Fraudsters Often Spread Browser Hijackers via Questionable Distribution Techniques

Fraudsters frequently employ various dubious distribution techniques to spread browser hijackers and similar malware. These techniques are designed to trick users into unwittingly installing unsafe software. Some common methods used by scammers include:

• Bundled Software: Browser hijackers are often bundled with legitimate software downloads. When users install the desired program, they may unknowingly also install the bundled browser hijacker if they do not carefully review the installation process and opt out of additional software.
•  Deceptive Pop-up Ads: Fraudsters create misleading pop-up advertisements that claim to offer useful software updates, security scans, or free downloads. When users click on these advertisements, they are directed to websites where the browser hijacker is automatically downloaded and installed without their consent.
•  Fake Software Updates: Fraudsters create fake alerts that mimic legitimate software update notifications. These alerts prompt users to download and install updates to their Web browsers or other software. However, instead of updating the software, users inadvertently install the browser hijacker.
•  Rogue Websites: Fraudsters create fake websites that appear legitimate, offering free downloads, software, or services. When users visit these websites, they may be prompted to download and install the browser hijacker as part of the supposed offering.
•  Email Phishing: Fraudsters send phishing emails containing links or attachments that appear to be from reputable sources. These emails often urge recipients to click on the link or download the attachment, which may lead to the installation of the browser hijacker.
•  Social Engineering Tactics: Fraudsters use social engineering tactics to trick users into installing browser hijackers. This may involve manipulating users into believing they need to install certain software for security reasons or to access exclusive content.

Overall, fraudsters employ a variety of deceptive techniques to distribute browser hijackers, relying on users' lack of awareness and vigilance to facilitate the installation of unsafe software. Users can be protected by avoiding clicking on suspicious links or advertisements, exercising caution when downloading software, and regularly updating their security software.