A fake MSI Afterburner download page is spreading malware

MSI logo laid on top of solidifying lava

PC and component manufacturer MSI is warning users that malicious actors are leveraging its name to distribute malware. The attackers have created a fake download page for MSI's Afterburner software, and they're using an URL that's made to look official to an unsuspecting user.

Afterburner is a graphics card tuning tool that allows users to set clock speeds for the GPU and memory, adjust the voltage, and monitor the temperature of the card. Typically, the software is available for anyone to download from MSI's website, but the official webpage - which you can access here - is currently undergoing maintenance. While the page can be accessed, download links don't work.

The attackers seem to be leveraging that, and the website looks nearly identical to the official one, however, the MSI website header is missing, and the official website also features a small icon in the bottom left corner to customize the website cookie settings. This is also missing in the fake website. For reference, the URL being used to impersonate MSI is as follows: https://afterburner-msi.space/. Obviously, we strongly advise against opening the URL or downloading anything from it.

If you don't happen to have MSI Afterburner currently installed, you may want to wait a little longer for the official page to be functional again. If you can't wait, at the very least make sure the website you're downloading from is one you can trust and isn't trying to pass itself off as an official MSI page.

Report a problem with article
A Colonial Pipeline building in a field
Next Article

President Joe Biden signs executive order to strengthen U.S. cybersecurity defenses

Product render of the MediaTek Dimensity 900 chipset
Previous Article

MediaTek introduces Dimensity 900 with sub-6GHz 5G, 120Hz refresh rate support

10 Comments - Add comment

Advertisement