Technical Support for New Level: WoofLocker or How to Sell Air

Cybersecurity researchers have discovered an updated version of the tool for tracking and redirecting Internet traffic users called WoofLocker. According to analysis conducted by Malwarebytes, the tool is actively being used to conduct fraud through technical support.

The researchers initially came across WoofLocker in January 2020, as reported in an article on the Malwarebytes blog. This tool utilizes JavaScript, which is embedded in compromised websites, primarily adult sites, to filter Internet traffic and identify any bot presence. Once the user’s device has been analyzed, the tool activates a browser blocking mechanism. The purpose of these attacks is to compel the user to call a specified number and, typically, convince them to pay for services that supposedly eliminate nonexistent security issues. In some cases, the attackers may even request remote access to the victim’s computer under the pretense of “fixing” the problem. However, this is actually an attempt to install malicious software or steal personal information.

/Reports, release notes, official announcements.