The campaign was spotted by researchers at security firm Confiant and reportedly leverages a vulnerability in Chrome to target iOS users with dodgy pop-ups.
The campaign’s reportedly been running for quite a while and has a tendency to get particularly aggressive during holidays, so you may want to be extra vigilant this Bank Holiday.
Related: Best VPN
“We’ve attributed the flurry of activity to a known threat actor called eGobbler — so named after the huge volumes of hits that their campaigns generate,” Explained Confiant researcher Eliya Stein in a blog post.
“This group has a tendency to ramp up their buying around holidays and weekends. Typically these campaigns peak in volume over a period of 36–48 hours before going into a state of hibernation until the next big push.”
Confiant didn’t disclose what the messages do to victim devices but the hackers have reportedly already targeted over 500 million sessions. Worse still, according to Confiant the flaw being targeted still hasn’t been fixed by Google.
“We will be offering an analysis of the payload and POC exploit for this bug in a future post given that this campaign is still active and the security bug is still unpatched in Chrome as of this blog post,” read the blog post.
“The Chrome team was notified of the bug with a working POC on April 11th and is currently investigating the matter. They responded in a timely manner within several hours of the report. We look forward to eventually sharing how this circumvention was accomplished.”
Related: Best anti-virus
Trusted Reviews has reached out to Google for comment on the report and will update this article when it hears back.
In the meantime the pop-ups are reportedly easy to spot as they all have the “.world” TLD for their landing pages, as shown in the example message above.
Nervous about the dodgy pop ups? Let us know on Twitter @TrustedReviews