How careful are you and your team when it comes to online security? You probably know the basics: avoid suspicious links, don’t download from unknown sources, and stay alert to phishing scams. But a new malware, designed to frustrate you into giving away your Google login details, is raising the stakes.
This malware is part of the growing “Amadey” family, active since August, and it uses a clever trick to lock users into a trap. Here’s how it works:
The malware forces your PC into “kiosk mode”—a setting often used on public computers to limit access to a single window. In this case, the malware locks your browser into full screen, hiding standard navigation tools like the address bar and menu buttons. Then, it redirects you to a fake Google password reset page.
In a normal situation, you’d simply hit Esc or F11 to exit full screen. But with this malware, those shortcuts won’t work. The goal is to confuse you into thinking that entering your Google password is the only way to regain control.
The reset page looks convincingly real. But as soon as you type in your credentials, a second piece of malware captures and sends them to cybercriminals in the background.
What to Do if You’re Stuck in Full Screen Mode
If you find yourself stuck in full screen, here are some ways to escape without giving up your details:
- Press ALT+TAB to switch to another task or ALT+F4 to force-close the window.
- Open the Task Manager (CTRL+ALT+DELETE) and close the browser from there.
- If these options don’t work, restart your computer by holding down the power button or unplugging it.
Once you’re back in control, it’s best to get help from a security expert to remove the malware safely.
Preventing Attacks Like This
Prevention is key. Watch for unusual behavior, especially if your browser goes full screen on its own and won’t let you navigate away. Avoid suspicious links and downloads, and always double-check before entering your password. If you’re unsure, close the window and start fresh—never enter credentials on a page that doesn’t feel right.
Need help protecting your team from the latest security threats? Get in touch with us today to learn more about our cybersecurity training.
Until next time, keep fit and have fun!
(TYYV) The Yada Yada Version:
A new malware traps users in full-screen mode, tricking them into entering their Google password on a fake page and yada yada yada users can escape by using task shortcuts or restarting their computer.
