Skip to main content

Beware: Hackers are using a clever Microsoft Edge malvertising scam

If you’re still using Microsoft Edge, you need to beware — a new malvertising campaign has just been discovered, and if you fall victim to it, your PC might be at risk.

According to Malwarebytes, the attackers are abusing Microsoft Edge’s News Feed feature to target their victims. Here’s what we know about this clever new scam.

Screenshot of a Microsoft Edge scam attack.
Malwarebytes

Malvertising refers to incorporating malware into advertisements, which is exactly what’s happening in this latest Microsoft Edge scam. First spotted by Malwarebytes’ Threat Intelligence Team, the operation seems to have started at least two months ago, if not more. It’s hard to estimate how many people have fallen for the trick so far.

Recommended Videos

The scam campaign runs on a really large scale. The attackers supposedly switch between hundreds of different ondigitalocean.app subdomains per day and each one of those subdomains are used to host a scam website intended to scam unsuspecting Edge users.

The threat actors inject attention-grabbing ads into the Microsoft Edge news feed. If a user is tempted to check out the article, their browser is then checked for a number of things, such as their location and their timezone.

It seems that not all users are deemed to be “worthwhile” enough to proceed with the scam. If the user’s browser does not match the attacker’s requirements, they’re redirected to a decoy page and nothing else happens. However, if the user ticks all the boxes, they are directed to a scam landing page.

Assuming that the user makes it to the scam landing page, what follows is a well-known pattern that has been used by many threat actors in the past. The landing page tells the user that the Windows Defender Security Center found a trojan virus and blocked the computer for security reasons. They are then given a (supposedly toll-free) phone number to dial in order to unlock their computer.

Malwarebytes didn’t specify what happens if one calls the listed phone number, but the way this scam usually goes is that the scammers obtain remote control of your computer and lock it down until they are paid. This often appears to be legitimate and is less of extortion and more of a “pay us for fixing this technical issue for you” kind of thing. Users may also be offered to sign up for a longer-lasting tech support contract.

The Microsoft Edge browser is open on a Surface Book 2 in tablet mode.
Image used with permission by copyright holder

Microsoft Edge is the default browser for Windows users, and much like its (now retired) older sibling Internet Explorer, it’s mostly used to download a different browser. Statcounter puts Edge’s market share at 4.3%, making it a small fish in a big pond largely dominated by the shark that is Google Chrome (65.52%). It sometimes trades blows with Mozilla Firefox, which currently sits at a 3.16% market share.

For the time being, if you’re using Microsoft Edge and want to avoid problems, it’s best to ignore the news feed altogether and simply visit a reputable news site directly to stay up to date.

Monica J. White
Monica is a computing writer at Digital Trends, focusing on PC hardware. Since joining the team in 2021, Monica has written…
I never use my Microsoft Copilot subscription. I still think it’s worth it
Microsoft 356 apps.

If you have a regular subscription, you’re likely well-versed in the dance of paying for something and wondering if it’s worth the value. For many people, that might be a streaming service that hasn’t been used in six or more months or a membership for a gym that hasn’t been visited since before that last holiday. For me, I grapple with what to do with my Microsoft 365 subscription, specifically after the recent price hike due to the addition of Copilot+ features.

Microsoft 365 is one of those interesting computer suites that you don’t realize that you need until you need it. It's likely why I’ve allowed Microsoft to snatch money from my bank account for several years, when I only use one or two programs and one or two features.

Read more
Microsoft’s Bing adds a Copolit Search mode to rival Google AI Search
Copilot Search for Bing Search engine.

Barely a few weeks ago, Google introduced a new AI Search mode. The idea is to provide answers as a wall of text, just the way an AI chatbot answers your queries, instead of the usual Search Results with blue links to different sources.

Microsoft is now in the race, too. The company has quietly rolled out a new Copilot Search option for its Bing search engine. The feature was first spotted by Windows Latest, but Digital Trends can confirm that it is now accessible across all platforms. 

Read more
Microsoft just made Teams even more of a hassle to use
A Home screen in Microsoft Teams showing the different Communities to choose from.

In a Microsoft support article, the software giant says that starting in April 2025, Microsoft Teams will no longer support sending or receiving SMS from Android devices. This change pushes users to switch to the Phone Link app for SMS messaging.

If you attempt to send an SMS using Teams, you'll be greeted with an alert notifying you of the change. The SMS feature is one of the lesser-known features, and you may not have even known it existed, but Microsoft will soon remove it from Teams. For now, you can still view SMS messages under Recent and send texts, but this feature will soon be removed. Currently, the "Link your phone" feature lets you manage your text messages without having to switch to another app, thus making you go through fewer steps.

Read more