Scareware
What is Scareware?
ScarewareMalicious software or web content that uses fake alarming messages to scare victims into installing junk software, paying for fake services, or calling fraudsters.
Scareware relies on social engineering rather than technical exploits: pop-ups, full-screen warnings, or fake antivirus scans claim the device is infected with dozens of threats and pressure the user to act immediately. Clicking through typically installs rogue security software, signs the victim up for a paid "licence," or routes them to a tech-support scam call centre that takes remote control of the device. Some variants drop real malware on top. Defences include ad and pop-up blockers, browser warning systems, application allow-listing, awareness training, and removing local administrator rights so a user cannot easily install rogue installers.
● Examples
- 01
A browser pop-up claiming "Your PC is infected!" and pushing users to download a fake antivirus.
- 02
Full-screen lockers that mimic FBI warnings demanding a fine via prepaid cards.
● Frequently asked questions
What is Scareware?
Malicious software or web content that uses fake alarming messages to scare victims into installing junk software, paying for fake services, or calling fraudsters. It belongs to the Malware category of cybersecurity.
What does Scareware mean?
Malicious software or web content that uses fake alarming messages to scare victims into installing junk software, paying for fake services, or calling fraudsters.
How do you defend against Scareware?
Defences for Scareware typically combine technical controls and operational practices, as detailed in the full definition above.
What are other names for Scareware?
Common alternative names include: Fake-alert malware, Fear-based malware.