Beware this malware: It "annoys" you into handing over login details

How careful are you and your team with online security? You know about phishing scams, risky downloads, and avoiding suspicious links, right?

Well, there’s a new, stealthier malware out there that tries to trick you into revealing your Google login details.

This malware, part of a growing threat known as “Amadey,” has been on the rise since August. It forces your computer into “kiosk mode”—a setting often used on public devices that restricts you to one window. This locks your browser in full-screen mode, hiding navigation buttons like the address bar and menus. From there, you’re directed to a fake Google password reset page.

Normally, you’d hit Esc or F11 to exit full screen mode, right? Unfortunately, if this malware has infected your PC, those shortcuts won’t work. The goal is to confuse you into thinking you must enter your password to escape the screen.

The fake reset page looks identical to a real Google page, but the moment you enter your details, they’re stolen by a second hidden malware, handing over your credentials to cybercriminals.

It’s alarming, but here’s the good news: you can still escape without giving up your information.

If your browser gets stuck in full-screen mode, try using ALT+TAB to switch tasks, ALT+F4 to close the window, or CTRL+ALT+DELETE to access the task manager and end the process. As a last resort, restart your PC by holding down the power button or unplugging it, then get in touch with an expert (like us) to investigate the malware.

Prevention is key. Be cautious if your computer starts behaving oddly, especially if your browser is suddenly forced into full-screen mode with no way to navigate. Avoid suspicious links and attachments, and don’t enter your password unless you’re certain the site is legitimate.

If you’d like training for your team on spotting and avoiding the latest scams, we’re here to help. Get in touch to learn more.