Security giant Kaspersky is warning Web users against the ongoing popularity of browser lockers (browlocks), where victims are prevented from accessing their Web browsers until they cough up a ransom.
Although not new, this type of online threat has grown in popularity in recent months as users rely more and more on mobile browsers during ongoing lockdown conditions.
Browlocks employ fake pages that fool unsuspecting users into either making a call, performing a money transfer, or giving out their payment details.
The locker itself takes control of the current tab on the browser, which will often display threatening messages, often accompanied by visual effects and sound.
Bethwel Opil, enterprise sales manager at Kaspersky in Africa, says although these are not particularly complex threats, the scare tactics bad actors use often work and intimidate people into making mistakes when it comes to cyber security best practice.
“These browlocks are essentially smoke-and-mirror tactics that rely on threats more than technical compromises,” he says.
Integrated security features of modern browsers mitigate against the risk of certain keys being disabled by browlocks, such as Escape, Alt and Tab. In order to stay safe, it is critical for mobile and desktop users to ensure they always run the latest versions of installed apps and operating system software, he says.
The built-in ad blockers of many browsers also rely on guidelines by the Coalition for Better Ads. If a Web site falls foul of these standards, the browser will typically block not only an ad, but all advertising on the resource – both elements that browlocks use to propagate.
“In most instances, people should simply close the browser via the task manager on their devices or simply restart their systems. They will be safe as long as they do not install any malicious code, dial the fraudulent numbers and the like,” Opil concludes.
Share