An upgraded version of WoofLocker, a powerful fingerprinting and redirection toolset designed for tech support frauds, has been described by cybersecurity researchers.
In order to deliver advanced JavaScript that drives users to a browser locker (also known as a browlock), the sophisticated traffic redirection strategy first became known by Malwarebytes in January 2020. It makes advantage of JavaScript hidden in hacked websites to perform anti-bot and web traffic filtering checks.
In turn, this redirection mechanism employs steganographic techniques to cloak the JavaScript code inside a PNG image that is only delivered after the validation phase has been successful. A fake PNG file without the dangerous code is employed if a user is identified as a bot or has uninteresting traffic read more WoofLocker Toolkit Hides Malicious Codes in Images to Run Tech Support Scams.
Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threats, breaches, and solutions.