Scammers are relentless in their quest to reach as many potential victims as possible, leading to billions of scam phone calls each year. However, the threat extends far beyond just phone calls; fraudulent websites are also a significant concern. A recent investigation by Malwarebytes has uncovered a concerning trend involving fake Disney+ websites that rank high in Google search results. This makes them particularly dangerous for users who search for Disney+ instead of directly typing in the official URL.
These counterfeit sites mimic legitimate Disney+ branding and present misleading links that may resemble the actual Disney+ website. Once users click on these links, they are often greeted by a fake Microsoft “security scan” pop-up, claiming that their device is infected with various threats, including trojans and spyware. The objective of these warnings is to instill fear and prompt users to take immediate action, usually by calling a fraudulent support number prominently displayed on the page.
While experienced web users might see through these tactics, individuals who are less familiar with technology—like children or older adults—may be easily misled and might end up contacting the scammers. Once connected, the fraudsters may guide victims through a “remote login session,” allowing them to install actual malware or solicit payments over the phone.
This latest example highlights how scammers exploit high-ranking search results to cast a wide net and capture unsuspecting victims. It’s important to remember that even seasoned internet users are not immune to deception; a personal experience involving a fake shoe store earlier this year demonstrated that even those with extensive web experience can fall prey to convincing scams.
Google is actively working to identify and remove fraudulent sites from its search engine, as maintaining quality results is vital to its business model. However, the vast scale of the internet means that automated tools often miss clever scammers who manage to exploit loopholes or pay for ads to bypass security measures. While Microsoft provides solid security tools for Windows users, legitimate software will not issue alarming warnings about criminal activity or provide dubious contact numbers.