How a broken Amber Alert link triggered a viral virus scare

Amber Alert FI.

A simple link truncation error recently sparked malware fears across SoCal. It led citizens to believe their devices had been hacked or the government had been compromised. Fortunately, neither scenario was true.

Various posts on Reddit show screenshots of an Amber Alert from the California Highway Patrol. It contains information about the missing child and the suspect vehicle. It ends with a Bitly link — a shortened URL.

Amber Alert post on Reddit.

However, this URL takes you straight to “3gpconv,” which is a file conversion website. It doesn’t contain any information about the actual missing child. You can find more reports here, here, here, and here.

Bitly link.

Shortened URL.

For those unfamiliar, an Amber Alert is an emergency public warning system designed to notify specific communities about recently abducted children.

Understandably, the public panicked. Many assumed the destination was a malicious file or that clicking the link would install malware. Some even thought the alert was fake; others were issuing warnings, asking people to avoid clicking on the link. One person commented that they turned their Amber Alerts off.

Fear about the Amber Alert.

What actually seems to have happened is that the URL was incomplete. These alerts have a maximum character limit of 360, and the rest of the URL was cut off. A re-alert was issued later, and this one actually had the correct URL.

Correct URL Amber Alert.

A lot of people were questioning why the government was using free, public URL shorteners. For the government and its affiliated services, people think it makes more sense to have an official shortening service to avoid confusion in the future. A lack of trust in a Bitly link is why people assumed it was a phishing scam.

In the end, this wasn’t a cyber attack or an elaborate malware campaign. It was just a poorly handled emergency alert that spiraled into confusion and chaos because of a broken shortened link. It can be avoided if the government moves to official link shorteners in the future. It’ll also massively improve public trust.

In Summary:

  1. A botched Amber Alert sent by the California Highway Patrol in Orange County (LA) led to a viral scare.

  2. The first alert included a Bitly shortened link, but a few characters of the actual link were cut off due to the 360-character limit of Wireless Emergency Alerts.

  3. Since the link was incomplete, it led to an old, unrelated page, which was a file/MP3 converter website with various ads and download buttons.

  4. This made the alert look sketchy, and people began thinking it was a virus or malware campaign, and that the government had been hacked.

  5. A second, corrected Amber Alert was sent shortly after, with the full proper link. This one contained the actual missing person flyer.

Disclaimer: The Featured image was generated with AI.

The post How a broken Amber Alert link triggered a viral virus scare appeared first on PiunikaWeb.

readers loved this
@piunikaweb