Not All Notifications Are Created Equal

Pop-up fatigue: it's something that we all deal with. No matter where you're browsing on the internet or what you're doing, it seems like there is always an endless barrage of things to click through. Allow notifications, sign up for our newsletter, full-screen banner ads that take up the entire webpage-- forcing you to hunt for the obscure [x] in the corner that will allow you to see the content that you actually came for. For many of us, these things are just part of being on the internet; an irritant and inconvenience, but not a dealbreaker.

But, as with most things, even the popups are being weaponized as ways to deliver malware and serve other nefarious ends. That isn't to say that popups weren't already used in such a fashion, but this is different. There are websites that are now using site notifications as a way to deliver malicious payloads at worst, and at best, they are giving spammer and scammers a direct line to the users who have the notifications enabled.

Even if someone weren't going to fall for a scam, there is never an upside to giving those bad actors that much room to work. Unless you REALLY need them, we recommend disabling site notifications in Google Chrome entirely, simply to prevent a misclick or click-fatigue from leading to a much more painful situation.

If you're interested in learning more about the risks of site notifications, check out this article from KrebsOnSecurity HERE.