WooofLocker is an updated version of an advanced fingerprinting and redirect toolkit called WoofLock, designed to carry out scams.
Should a user be detected as a bot or not interesting, a decoy PNG file without the malicious code is used.
The majority of the sites loading Wooflocker are adult websites, with the infrastructure using hosting providers in Bulgaria and Ukraine that give the threat actors strong protection against takedowns.
According to the authors of the report, the threat actor behind the traffic redirection and browlock will get paid for each successful lead.
They note that the websites hosting the malware have been compromised for years while the fingerprinting and browser locker infrastructure appears to be using solid registrar and hosting providers.
๐ Feeling the vibes?
Keep the good energy going by checking out my Amazon affiliate link for some cool finds! ๐๏ธ
If not, consider contributing to my caffeine supply at Buy Me a Coffee โ๏ธ.
Your clicks = cosmic support for more awesome content! ๐๐
Leave a Reply