Compare Revisions

What to do if you spot fake notices claiming to contain an "urgent" or "critical" Firefox update.

We have received reports from many users who were interrupted in their browsing experience and who got redirected to a fake page purporting to provide an "urgent" or "critical" update and prompting to download a firefox-patch.js (or .exe) file. Some people have also reported seeing ads prompting them to download a Firefox update. These are scam tactics trying to trick you into installing malware! <!-- L10N Note: This notification is part of the Heartbeat shield study (https://wiki.mozilla.org/Firefox/Shield/Heartbeat), targeting only limited set of locales (en-US, es, de and few others). See https://support.mozilla.org/en-US/forums/contributors/712991 --> {note}'''Note:''' If you start Firefox and see a notification bar with a Heartbeat [[Image:HeartbeatIcon]] icon, the message ''Your Firefox is critically out of date. An update is required to stay secure'' and an {button Update Now} button (as shown below), this is a legitimate Firefox update prompt. Please follow the download to update Firefox.<br> [[Image:Heartbeat-Fx55CriticalUpdatePrompt]]<br> For more information about the "Heartbeat" feature, see the article [[Rate your Firefox experience (Heartbeat)]] and [https://wiki.mozilla.org/Firefox/Shield/Heartbeat this Mozilla Wiki page]. <!--https://support.mozilla.org/en-US/questions/1192712-->{/note} Firefox has an automated background update mechanism which will never prompt you to manually download and execute a file, except in the case of a Heartbeat notification (as shown above). You can always check for updates within Firefox yourself - to learn how, see [[Update Firefox to the latest version]]. To our knowledge, fake update notices are a form of "[https://en.wikipedia.org/wiki/Malvertising malvertising]". Those fake notices get triggered by code contained in ads that are displayed on otherwise legitimate websites you are visiting and get spread through advertisement networks. This is an example of what a fake Firefox update notice might look like - these are hosted on randomly generated and quickly changing domains: [[Image:Fake urgent update]] =What you can do if you spot a fake update notice?= #Always click ''Cancel'' on these pop-ups. Never save and open/run unsolicited files! #Install an ad-blocking addon from [https://addons.mozilla.org/firefox/extensions/privacy-security/ addons.mozilla.org] to avoid such kind of malvertising in the future. #Report web forgeries to the [https://www.google.com/safebrowsing/report_phish/?tpl=mozilla Google Web Forgery site]. =What you can do to prevent malware on your computer= #Run a malware scan on your computer to make sure your computer was not infected. (See [[Troubleshoot Firefox issues caused by malware]].) #Avoid downloads from unreliable sources in the future. #Use Tracking Protection (available as a [[New Test Pilot experiments| Test Pilot experiment]] or in [[Tracking Protection in Private Browsing|Private Browsing]]). =To learn more about malware= *[http://usa.kaspersky.com/internet-security-center/internet-safety/what-is-malware-and-how-to-protect-against-it#.V46y9rUwdeZ Kaspersky Internet Safety] *[http://www.avg.com/a/us-en/what-is-trojan-malware AVG "Is it Malware?"] *[https://discussions.apple.com/thread/5285635?tstart=0 Apple Forums advice on if you have malware] Fake updates have been spotted for other popular browsers. Although we cannot root out every bad actor on the web, we are continuing to improve Firefox's defenses against malware. Knowing how to recognize and report such frauds helps us keep the Internet open and safer.