Caution: New danger

In a recent case, cybercriminals exploited security vulnerabilities in well-known brands such as Bose and Panasonic to spread malware via seemingly trustworthy Internet addresses. The trick: the attackers took over old Internet addresses (known as subdomains) that companies no longer actively use but which are still technically accessible. This makes these sites appear legitimate at first glance – after all, they belong to well-known companies.

Visitors to such sites are sometimes confronted with fake security warnings. The sites claim, for example, that the computer is infected with viruses and prompt users to download alleged security software or call a support hotline. In reality, this is a scam: the aim is either to install malware on the device or to steal personal data and money.

What is particularly insidious is that some sites ask for permission to send notifications – anyone who allows this will later receive spam and further scam attempts directly on their device.

What can you do?
When browsing unfamiliar websites, you should never simply allow notifications. Warnings about alleged viruses or updates should always be viewed with skepticism—genuine system messages do not come via the browser. And companies should regularly check whether they have properly deactivated outdated or unused web addresses so that they cannot be taken over by third parties.