Overview

• Scammers exploit sponsored search ads to redirect users to genuine support pages altered with fake phone numbers embedded in the site’s search function.
• Tech giants such as Netflix, PayPal, Apple, Microsoft, Facebook, Bank of America and HP have all had their support searches compromised.
• Users who call the illegitimate numbers risk handing over personal or financial data or granting remote access to their computers.
• The attacks leverage a reflected-input vulnerability caused by insufficient sanitization of search query parameters on targeted websites.
• To protect themselves, users should manually access official support portals, verify contact numbers through past communications, watch for signs like phone numbers in URLs, encoded characters or urgent language, and consider using extensions such as Malwarebytes Browser Guard.