Fake Malware Warning on NYTimes web site
I just got a fake malware warning while reading an article on the New York Times web site. It also locked up my web browser too.
I'm copying and pasting the text here, to help any folks who do a search on the text.
There was a dangerous try to get an access to your personal logins & bank information. Luckily, your Firewall managed to block this suspicious connection. We recommend you to freeze your accounts until some measures will be taken. There is a great threat of leaking of your personal data. So you need to respond swiftly! Trojan Virus may have already hurt your hard disk and its data. That is why we are checking and verifying your system security. Do not waste your tie and consult one of our service centers or call us. Contact Microsoft Support: +1 (866) 273-6507 (TOLL-FREE). Your urgent response is needed. To deal with this problem, contact our network administrator.
How can we tell this is fake?
First, I'm using the Chrome web browser, and folks from the Chrome team would have much better grammar. Second, the warning is in the web browser and not from the operating system, and it doesn't make sense that a firewall warning would be in the browser. Third, the Chrome team wouldn't ask people to call Microsoft. Fourth, if you search for the phone number, it doesn't go to any particularly important page, which would be unlikely if it really were a Microsoft phone number.
What should I do to protect myself?
If you see this browser warning, don't worry, it's fake. You just need to close your web browser. The problem is that this warning has also probably locked up your web browser and possibly your computer. I don't know what to do for Mac, but for Windows, hit Ctrl-Alt-Delete and then choose to show the Task Manager. Look for your web browser (Chrome, Edge, Firefox, or Internet Explorer), right click on it, and then choose "End Task."
I should add that the NYTimes team was very responsive. I sent in this screenshot, what web page I was looking at, and the URL of the fake malware, and they responded in about 20 minutes.