How fraudsters can hijack your browser
Staying safe online is an important way of protecting your personal and financial data. Fraudsters like to use weaknesses in technology to try and gather information that can then be used to commit crimes. One such method is hijacking web browsers – software like Chrome, Firefox or Internet Explorer – to take control of computers.
What is browser hijacking?
Browser hijacking is a form of hacking in which malicious software changes a user’s browser settings without their knowledge or permission. Anyone who has ever been redirected to a website they didn’t intend to visit, found that their default browser has changed of its own accord, or been subjected to a series of pop-up ads, has most likely had their browser taken over by “malware”.
It’s reasonably easy to fall prey to browser hijacking. You can pick up malware by downloading software, clicking on an email attachment or visiting an infected site. It’s also quite common - in 2015, Google found that over 5 million of its users had computers potentially infected by malware.
It can sometimes be difficult to spot if your browser has been hijacked. Adverts might appear to be normal pop-up or display ads, and malware may just run in the background without really changing how your browser works.
Why do fraudsters hijack browsers?
In most cases, browser hijacking is a crude – if deeply annoying - scam designed to redirect users to sites or ads where extra clicks generate revenue for the hackers. It can be dangerous, however, depending on the kind of malware involved. For example, “spyware” can gather personal data such as banking details and email passwords, leaving the user vulnerable to identity theft.
A Cifas study found that there were 172,919 cases of identify fraud recorded in 2016, an increase on the previous year. This is a worrying trend for many consumers – a survey carried out by YouGov on our behalf found that 56% of people were fairly or very worried about becoming a victim of identity fraud. Once fraudsters have stolen personal data, they can then either sell it online or use it themselves to commit identity fraud.
How to avoid browser hijacking and identity theft
There are a number of ways to minimise the risk of browser hijacking and protect your personal data while online.
- Update your browser software regularly. In many cases, software updates will feature responses to specific bugs, hacks or intrusions.
- Use good security software – you may find anti-virus software from Bitdefender, McAfee, Webroot or Norton pre-installed on your device.
- If you download free software, make sure it’s from a reputable site and read the fine print – you may unwittingly agree to install malware if you skip over the end user licence agreement (EULA).
- Don’t open email attachments from people you don’t know.
- Never give personal information unless you’re sure who’s asking for it. Banks and financial organisations will never ask for private data online.
You should also make sure you regularly change your password and avoid using the same password for multiple accounts. If one account is breached, the password may then be used to access all your other accounts. You can read more about this in our article on how to pick a strong password.
- How secure is your email?
- Identity theft and fraud explained
- Financial fraud explained
- Best practices for avoiding identity theft
- Stay safe online: Creating a secure password
- Scam avoidance: A few ways to help stay secure
- Are smart gadgets putting you at risk of identity theft?
- Helping your children stay safe online
- Should you share your location on social media?
- Safeguard your personal information on video game consoles
- Would you do internet banking on your smart TV?
- How fraudsters use Wi-Fi hotspots to steal data
- How to avoid email fraud
- Preventing your child’s identity from being stolen
- Keeping your personal information secure when moving home
- Protect yourself from becoming a victim of SMS phishing
- Protect against identity theft when sharing photos online
- Safeguard your identity on mobile apps
- Your social media profile and identity theft
- What is credit card fraud – can you prevent it from happening to you?
- Safeguard your identity on Facebook and other social media sites
- Going on holiday - keeping your identity safe
- How to prevent smartphone identity theft
- Shopping online – staying safe against identity theft
- How to spot and avoid romance scams
- Facial recognition and identity risk
- Dealing with phishing phone scams
- How cyber attacks happen
- Safer Internet Day – protecting children online
- 7 Signs of Identity Theft
- How to avoid contactless card fraud
- What Are Data Breaches?
- How to Spot a Phishing Email
- ID Fraud Overview
- How Financial Crimes Are Hidden in The Dark Web
- How much do you know about the Dark Web?
- Are you losing your identity?