New frontend based attack mimic blue screen in a very effective way
I think that the lowest level of attack is the front end scam attacks. It means attacks that use CSS, JS, and other front-end manipulations techniques to convince users to do some harmful operations. For example, some popups that alert the users on “spyware” or some badly designed error messages. but a new combined technique takes the front end attack to a completely new level.
It all began with a friend of mine that entered into some file conversion service and clicked on one of the ads. The ad opened an attack site that mimicked completely blue screen along with a voice-over that repeatedly says: “Your computer has been breached”.
The graphic itself is very basic but look on the mimicked tab that shows false “Microsoft” support URL. It is only an image, but the stressed-out user can easily skip it.
The whole point of the attack is to convince the victim to call the “support number” In this case 1–877–639–7858, we all know what will happen if someone will call this number, right? hint hint: No
How to avoid it? well, simple Alt+F4 (on Windows) will solve this issue for you. Beware and warn your loved ones.