Beware this fake Windows 11 installer that may harm your PC

By Arif Bacchus Published April 19, 2022

If you’re looking to download or upgrade to Windows 11 and go to a search engine to find the files to do so, you might want to be very careful. According to recent reports, hackers are currently leveraging a new campaign where you might end up downloading a fake Windows 11 updater, that could leave your system infected with malware.

This new campaign specifically targets people who go to search engines looking to download Windows if their devices don’t meet minimum specs. It sends these unsuspecting users to an official-looking, but fake, Microsoft website with a Windows 11 “Download Now” button. The website has official Microsoft logos, favorite icons, and even official Windows 11 imagery. As of this writing, the website is no longer available, but Bleeping Computer provided the screenshot below before the problematic website was pulled.

A website with a fake Windows 11 installer. — Bleeping Computer

If a user had clicked that “Download Now” button, or visits the website, an ISO file would have been downloaded. That ISO file, when opened, has a piece of malware that is known as an information stealer embedded inside. The folks at CloudSEK named this new information stealer “Inno Stealer,” and believe that it drops four files into unsuspecting systems, as revealed in data shared with Bleeping Computer.

Recommended Videos

The files could remove antivirus and collect cookies from your web browsers, stored passwords, filesystem data, or even items from your clipboard. All of this would be done at night, stored, and encrypted with a PowerShell command, then sent to the hacker’s server.

To avoid falling victim to these kinds of exploits, it is always best to check the website URL that you are visiting, especially after finding it on a search engine. It is also good practice to never download ISO files from unofficial sources and to keep your antivirus protection up to date to ensure that it has the latest definition updates that scan for the new threats like this one.

As for downloading, installing, and upgrading to Windows 11, Microsoft urges users to wait and update to the new operating system through Windows Update on compatible PCs. If you’re eager to download, it’s best to use official Microsoft tools like the installation assistant or installation media, or even enroll your PC in the Windows Insider program.

Topics

Former Digital Trends Contributor

Arif Bacchus is a native New Yorker and a fan of all things technology. Arif works as a freelance writer at Digital Trends…

Computing

Windows 11 can now use AI to respond to your text messages

The Phone Link app being used on a phone and laptop screen.

Microsoft has started rolling out a helpful Suggested Replies feature in the Phone Link app that gives users AI-powered text suggestions for quick replies to their messages, the software giant stated in a Support blog post.

The new feature uses Microsoft's Cloud AI models to create short replies to specific messages, resulting in faster response times. It is rolling out in Phone Link version 1.24082.137.0 for Windows 11 24H2 and 23H2. You don't need to be in the Windows Insider Program to try out the feature, but you won't see the Suggest Replies feature on all messages. You'll only see the suggestions when the Phone Link's AI can understand the message.

Computing

Whatever you do, don’t install the Windows 11 September update

Microsoft has warned users in a post on its support blog that the September KB5043145 update, released on Thursday, is causing some Windows 11 PCs to restart multiple times, show the blue screen of death, or even freeze.

The problems in the recent update affect those on the 22H2 or 23H3 version of Windows 11. However, Microsoft said it is investigating the issue and will provide more information when it's available. Microsoft confirmed: "After installing this update, some customers have reported that their device restarts multiple times or becomes unresponsive with blue or green screens. According to the reports, some devices automatically open the Automatic Repair tool after repeated restart attempts. In some cases, BitLocker recovery can also be triggered."

Computing

Why new antivirus software may have just installed itself on your PC

A person compares Bitdefender and Norton antivirus software pricing on a Windows PC.

Late last week, cybersecurity company Kaspersky started deleting its anti-malware software from computers located in the United States. As a replacement, the company automatically downloaded antivirus software from UltraAV instead.

If you use Kaspersky antivirus software, you may know the Russian company was added to the U.S. government's Entity List and subjected to a ban on sales and updates within the United States earlier this year. As a result, the company told BleepingComputer in July that it had decided to shut down its U.S. operations and lay off its American employees.