This is an interesting attack. It works by the threat actors employing different lures to redirect users to bogus pages that aim to deploy malware by urging site visitors to run an encoded PowerShell code to address a supposed issue with displaying content in the web browser. Imagine you think you are about to do something like access a meeting, video, etc. and you see an error message. Within the message, there is a “this didn’t work, use this “fix this”” message. if you click the fix … you essentially are coping malicious code and running it thinking you are just fixing what didn’t allow you to access the thing you were trying to connect to. The popups look like they are coming from a trusted source like Google or Chrome browser warnings. Its trickly and something the average user will just click and go forward with.
Learn more about the details of this threat via a post from Hackernews HERE.