We recently identified and resolved a security issue affecting our website, which briefly displayed a fraudulent “Chrome update” popup to some visitors. We took the site offline as a precaution, removed the malicious content, and secured the site.
Security notice
Between the 1st of June 2026, 18:56 (UTC+02:00) and the 4th of June 2026, 12:58 (UTC+02:00), our website was affected by a malicious plug-in that might have shown some visitors a fake prompt asking them to copy a line of text and paste it into their Terminal (Mac) or PowerShell/Run box (Windows).
Visitors who did this may have had passwords, browser data and active login sessions collected from their devices. Visiting the site or seeing the prompt, without running any command, did not affect your device. If you did not run any command, no action is required on your part.
If you did open Terminal or PowerShell and run a command, we recommend taking the following steps. Please carry them out from a different, trusted device:
- Change your passwords, beginning with your email account, followed by your password manager, banking and financial accounts, and anything saved in your browser.
- Use the “Log out of all devices” option on your important accounts. Changing a password alone may not be sufficient, as the software can capture login sessions.
- Enable two-factor authentication on your key accounts, preferably using an authenticator app or security key.
- If you hold cryptocurrency, move it to a new wallet from a clean device.
- Have the affected computer fully reset or reinstalled by your IT team or a qualified technician. Please note that a standard antivirus scan may not detect this type of software.
We have removed the malicious content and secured our website. We apologize for any concern this may have caused. If you have questions, please contact privacy@avow.tech
About the Author
