Tech support scammers discover URL redirect to lure victims
Tech support scams often use exploit kits in malvertising attacks, but scammers can also lure victims through less complex methods.
Tech support scams often involve malvertising attacks using common exploit kits like Angler EK or Nuclear EK, but scammers can also lure victims through less complex exploits. For example, researchers at Malwarebytes noticed a scam using a malvertising campaign delivered from a few lines of code.
“That URL points to a subdomain from the original scam page, which in turn repeats the process with another subdomain, in effect creating what looks like a never ending situation,” wrote senior security researcher Jérôme Segura, in a Malwarebytes blog post.