Fake Windows Push Notifications are being used to trick victims into installing a fake Windows Defender update. Instead of sending out emails, attackers hack into pop-up notifications and use a fake one that disguises itself by using the McAfee name and logo to inform the victim about what is opurpirted to be a Windows Defender Update. Clicking on the message leads to various fake websites informing the victim their McAfee antivirus subscription has expired and that McAfee has detected threats on their system. The installed malware is capable of stealing system information.”]
Source: https://www.databreachtoday.com/windows-push-notifications-used-for-fraud-a-16724