Jerome Segura at MalwareBytes was the first to report about a phishing attack that uses a fake "Chrome Update" to trick end-users into installing ransomware on their workstation. So, I would send an email to your users with something similar to:
"Watch out for emails that look like they come from Google, and warn you that 'Your version of Google Chrome is potentially vulnerable and out of date.' This is a recent spam wave, and they cyber criminals are trying to make you download this well-known browser but in reality it is a dangerous Trojan that will encrypt all your files and demand a significant amount of money as ransom to give you your files back.
"Here is how the email looks ( it will be a bit different in each email client )
So remember when you get emails like this, do not click on links, do not open any attachments and delete them. Remember: When In Doubt, Throw It Out!"
Stepping end-users through effective security awareness training is a must these days. Find out how affordable this is for your organization today.
ScreenShot Courtesy MalwareBytes
