Browser Notification Abuse

What You'll Learn in Browser Notification Abuse

• Identify fake CAPTCHA prompts and other social engineering tactics used to obtain notification permissions
• Revoke push notification permissions from specific websites across Chrome, Firefox, and Edge browsers
• Recognize phishing attacks delivered through push notifications, including fake security alerts
• Execute incident response procedures after credential compromise from a notification-based phishing attack
• Configure browser notification settings to block requests by default and allowlist only trusted sites

Browser Notification Abuse Training Steps

1. A Client Deadline

   It's Tuesday afternoon at Brightwave Analytics. Alice has a client presentation due tomorrow morning for Meridian Group, and she needs professional infographics to visualize the engagement data. Building them from scratch would take hours she doesn't have.

2. A Colleague's Suggestion

   An email arrives from Marcus Reid, a colleague on the design team.

3. Visiting Chartify Pro

   The tool looks promising, and Marcus vouches for it. Alice clicks the link to check it out.

4. Human Verification

   The page loads but immediately shows a verification prompt. A message instructs Alice to click Allow on the browser prompt above to verify she is human.

5. Creating an Infographic

   The verification overlay disappears and the tool loads. It looks professional, with templates for bar charts, pie charts, and more. Alice selects a template to start building her presentation graphics.

6. A Suspicious Alert

   Alice is reviewing the finished presentation when a notification pops up in the corner of her screen. It claims her PC is infected with viruses - but she doesn't recognize the source. It feels off, so she dismisses it.

7. More Pop-Ups

   A few minutes later, another notification appears - this one claims she has won a gift card. Alice dismisses it again, recognizing the scam pattern, but she is starting to wonder where these notifications are coming from.

8. What's Going On?

   Alice keeps getting these pop-up notifications even though she hasn't visited any suspicious sites. Something is clearly wrong.

9. A Targeted Alert

   Another notification appears, but this one is different. Instead of a generic virus warning, it specifically mentions Brightwave Analytics and references a security incident. It looks more official than the others.

10. Verifying Her Identity

    The notification opens a page that looks like a Brightwave security portal, asking Alice to verify her identity. The page warns about unusual login activity and asks for her work credentials.