Tech Support Scammers may freeze your browser

Discussion in '0-day Release' started by RGiskardR, Feb 8, 2018.

  1. RGiskardR

    RGiskardR Malware Tester Silver Member

    Tech support scams come in many forms; from basic popup messages or fake screenshots posted on websites to sophisticated operations that try to block users from leaving a site or closing a popup.

    Malwarebytes discovered a new sophisticated tech support scam operation recently that affects Chrome, Firefox, Brave and probably other web browsers as well.

    The scam uses a public API that browser's support to overload it with file downloads to increase CPU and memory usage so that the browser freezes and becomes unresponsive.

    The Blob constructor coupled with the window.navigator.msSaveOrOpenBlob method lets you save files locally and, as you may have guessed, is what is being abused here.

    Full source:
    Trim and silversurfer like this.
  2. Google Adsense

Share This Page