[Scam Alert] Browser Notification Scams
Author: Trend Micro
This article is from Trend Micro.
Web push notifications (also called browser push notifications) are a web browser feature that allows websites to send notifications to users regardless of which sites they have open, and sometimes even if their browsers are closed altogether! They are super-powerful and really handy, but scammers have been exploiting the feature to promote unwanted ads and scam sites, and even send out malicious links containing malware.
If you receive a notification from a malicious website and grant it the permissions it is requesting, you will start to be bombarded by notifications in the bottom right of your screen with fake alerts, messages from fake dating sites, and adverts for products that ARE ALMOST CERTAINLY SCAMS.
Examples of fake notifications
How malicious notifications get on websites
There are two methods that scammers use to get their malicious notifications on to websites. The first requires the exploitation of a hole in a website’s security. The security flaw allows malicious code to be injected into the site that redirects users to a malicious page. On that page, the users are then tricked into enabling the nefarious browser notifications.
The second method is a lot simpler; some websites cooperate with the scammers and willingly inject the redirection code into their sites – presumably for a fee.
Beware of websites that offer illegal content such as:
- Pirated movies
- Pirated software
- Pirated songs
- Illegal streaming
Malicious notifications are regularly found on porn sites, too.
Whenever you visit a site infected with malicious web browser notifications, you will often be randomly redirected to a page asking you to click “Allow”. The site will almost always tell you that you need to do so before you can view certain content or before you can use a certain feature of the site.
For example, on illegal streaming sites, you will often be redirected to a page containing a fake video player and asked to click on the “Allow” button before you can play the video.
How to protect yourself from browser notification scams
- Avoid visiting untrusted websites. View streaming content on reputable websites to minimize the risk that you will be targeted by these scams.
- Be wary of accepting browser notifications in general. If you don’t allow malicious sites to send notifications, they can’t send you any unsolicited notifications.
- NEVER click links or notifications from unknown sources. Use Trend Micro Check to detect scams with ease!
1. After you pin the Trend Micro Check browser extension, it will block dangerous sites for you automatically:
2. Trend Micro Check on WhatsApp:
Send a link or a screenshot of suspicious text messages to Trend Micro Check on WhatsApp for immediate scam detection:
Download Trend Micro Maximum Security for even more protection, including Web Threat Protection, Ransomware Protection, Anti-phishing, and Anti-spam Protection. Gain access to the Privacy Scanner for Facebook and Twitter, Social Networking Protection, and Parental Controls, too. Click the button below to give it a try:
Clicked on a malicious browser notification? Read on!
Here’s what you need to type into your web browser’s address bar (don’t type the quotation marks):
Chrome: “chrome://settings/content/notifications”
Firefox: “about:preferences#privacy”
Microsoft Edge: “edge://settings/content/notifications”
Once you’ve typed that in, hit Enter and you’ll be taken to a page where you can disable the malicious notifications.
Report a Scam!
Have you fallen for a hoax, bought a fake product? Report the site and warn others!
Scam Categories
Help & Info
Top Safety Picks
Your Go-To Tools for Online SafetyDisclaimer: Some of the links here are affiliate links. If you click them and make a purchase, we may earn a commission at no extra cost to you.
- ScamAdviser App - iOS : Your personal scam detector, on the go! Check website safety, report scams, and get instant alerts. Available on iOS
- ScamAdviser App - Android : Your personal scam detector, on the go! Check website safety, report scams, and get instant alerts. Available on Android.
- NordVPN : NordVPN keeps your connection private and secure whether you are at home, traveling, or streaming from another country. It protects your data, blocks unwanted ads and trackers, and helps you access your paid subscriptions anywhere. Try it Today!
- Incogni : Incogni automatically removes your personal data from data brokers that trade in personal information online, helping reduce scam and identity theft risks without the hassle of manual opt-outs. Reclaim your privacy now!
Popular Stories
As the influence of the internet rises, so does the prevalence of online scams. There are fraudsters making all kinds of claims to trap victims online - from fake investment opportunities to online stores - and the internet allows them to operate from any part of the world with anonymity. The ability to spot online scams is an important skill to have as the virtual world is increasingly becoming a part of every facet of our lives. The below tips will help you identify the signs which can indicate that a website could be a scam. Common Sense: Too Good To Be True When looking for goods online, a great deal can be very enticing. A Gucci bag or a new iPhone for half the price? Who wouldn’t want to grab such a deal? Scammers know this too and try to take advantage of the fact. If an online deal looks too good to be true, think twice and double-check things. The easiest way to do this is to simply check out the same product at competing websites (that you trust). If the difference in prices is huge, it might be better to double-check the rest of the website. Check Out the Social Media Links Social media is a core part of ecommerce businesses these days and consumers often expect online shops to have a social media presence. Scammers know this and often insert logos of social media sites on their websites. Scratching beneath the surface often reveals this fu
How do I recover my crypto after it’s stolen? What happens if your crypto wallet is compromised? Can stolen crypto be traced, and can police actually recover crypto in 2026? These are the questions most people ask within minutes of realizing their wallet has been drained. Crypto theft is fast, quiet, and unforgiving. By the time most victims notice something is wrong, the funds are already moving across the blockchain. Once seen as a problem for exchanges and whales, crypto theft now heavily affects everyday investors. Phishing links, fake support chats, wallet approval scams, SIM swaps, and malware attacks have become common. Knowing what recovery realistically looks like—and what it doesn’t—can prevent panic, bad decisions, and costly follow-up scams. In a Nutshell Crypto recovery is possible, but only in limited situations Blockchain transactions are irreversible, but stolen crypto can still be traced Speed and documentation matter more than optimism Police and exchanges play a bigger role than private recovery services Guaranteed recovery offers are almost always scams Is it Actually Possible to Recover Stolen Crypto? Yes, crypto recovery is possible, but only under specific conditions and rarely through direct action by the victim. Blockchain transactions are final by design. Once crypto is sent and confirmed, it cannot be reversed. There is no central authority, no chargeback process, and no technical “undo” button, even if the transaction was clearly fraudulent. This is where many people ask whether stolen crypto can be traced. In most cases, it can. Every transaction