A common attack that is being seen on the web over the past 2 months is something called The “HoeflerText”” font wasn’t found pop-up. This popup is part of a social engineering attack that uses javascript to display an alert stating that you are missing a font required to properly view a site. This alert states that your version of Chrome or Firefox does not have the Hoefler text font installed and then prompts you to download a fake “”Chrome Font Pack”” The only reason you are seeing this popup on a site was because the site was hacked and javascript was injected to display this popup.”
Source: https://www.bleepingcomputer.com/virus-removal/hoeflertext-font-wasnt-found-and-chrome-font-pack-guide