This morning I turned on my laptop with Fedora 29 and turned on the usual set of applications I use for my daily job:
- Firefox (with some extensions)
- Slack (from flathub repository)
- VSCode (from the Microsoft repository)
- Gnome Terminal
- Gnome Web (with Google Calendar in web app mode)
As soon as they were turned on, I found out in my Gnome notification panel two notifications about some “handy ways to get money”, in a very typical scam pattern. They had a weird application symbol aside which I don’t think I’ve seen before, and there was no indication of the app generating them whatsoever. To try to find out where they were coming from I clicked on them (yep, I trust Fedora’s security a lot) and they just led me to a scam webpage in Firefox.
I checked my email in Thunderbird, but I couldn’t find any trace of scam mail.
Several minutes later, I received another similar scam notification, but this time with the Google icon. It disappeared by itself after about one minute.
I am really concerned about these events, and I am trying to find out where they actually originated. I couldn’t see anything related in journalctl and Gnome Logs. Is there a way to investigate further starting from the Gnome notifications? Or do you suggest another approach?
Thanks to everyone who’ll help me!