Express
SlowMist: Beware of Browser History Pollution Attacks, Malware Attacks Resurface
Summary: SlowMist has released its security event analysis for the fourth quarter of 2025, highlighting a new, more covert form of phishing: even if users manually enter the correct official domain name, they may still be redirected to a phishing website. Some victims reported that despite entering the correct address, the browser automatically completed it with ...
SlowMist has released its security event analysis for the fourth quarter of 2025, highlighting a new, more covert form of phishing: even if users manually enter the correct official domain name, they may still be redirected to a phishing website. Some victims reported that despite entering the correct address, the browser automatically completed it with a fake domain name created by the attacker. This is not due to user error, but rather attackers pre-polluting browser history through ads, social media prompts, or fake announcements. Once the phishing domain is stored in the browser's autocomplete logic, the browser will automatically redirect to this fake website, which is almost indistinguishable from the official site, the next time the user enters that address. Additionally, malicious software attacks on computers are resurfacing. Attackers typically implant malicious programs into users' local environments through phishing links, private messages in social tools, or so-called resource downloads. Once a device is infected, data related to wallets faces risks.
Tags:
Link: SlowMist: Beware of Browser History Pollution Attacks, Malware Attacks Resurface [Copy]
