The security experts at Kaspersky are warning about a new scam that tricks you into downloading malware by disguising it as a security certificate. Here’s how it works. You’ll see a warning pop up that looks like the screenshot below.  This looks like a real security alert and tells you that you need to install a security certificate.

security-certificate

You’ll see a little blue button that claims the installation is recommended.

security-certificate-recommended

This is a classic example of a phishing scam. If you do click on that button you’ll actually download a malware called Trojan-Downloader.Win32.Buerak. Burerak can be used to spread all kinds of malware including banking malware, keyloggers that track every move your computer makes, and ransomware.

How do you prevent it? Never allow yourself to get panicked and just start clicking on things on your PC. Always take a minute when you see an alert to take a closer look at it. Make sure you have up-to-date security software installed on your computer.  If you have clicked on something you think might be suspicious, make sure to run a malware program ASAP.