'Trojan:Slocker' Pop-up Scam
During our investigation of deceptive websites, our researchers came across a technical support scam known as "Trojan:Slocker." This scam falsely alerts visitors that their device is infected with a trojan or ransomware and urges them to contact the provided helpline. It's important to note that this scam may be preceded by the appearance of a pop-up called "Ransomware EXE.01092-1_Alert."
It's crucial to emphasize that the claims of infection in this scheme are entirely fabricated, and it has no affiliation with Microsoft Corporation or any of its products or services.
The website promoting this scam is designed to mimic Microsoft's official website and displays multiple pop-up windows, including one labeled "Ransomware EXE.01092-1_Alert."
The primary pop-up asserts that the device is compromised by "Trojan:Slocker," endangering personal and financial data. The alert strongly encourages users to call "Microsoft Support" to eradicate the supposed ransomware.
As mentioned earlier, all the information presented by this scam is fraudulent and has no connection to Microsoft or its products and services.
This scheme is initiated when users call the phony helpline, and the interaction may occur entirely over the phone. Scammers, posing as "support" or "Microsoft-certified technicians," may deceive victims into revealing sensitive information, conducting financial transactions, downloading and installing malware, and more.
Most tech support scams involve cybercriminals gaining remote access to users' devices, often utilizing legitimate remote access and control software.
How Should You Act if You Encounter Similar Pop-Up Warnings Online?
If you encounter pop-up warnings online, especially those that claim your device is infected with malware or request immediate action, it's important to proceed with caution and take the following steps:
Stay Calm:
Don't panic. Scare tactics are often used in pop-up scams to pressure users into making hasty decisions.
Do Not Click on the Pop-Up:
Avoid clicking on any buttons, links, or pop-up elements within the warning. This can lead to unintended consequences.
Don't Call the Supplied Phone Number:
If the pop-up includes a phone number and urges you to call for assistance, refrain from doing so. Legitimate tech companies don't use pop-ups to provide support.
Do Not Download or Install Anything:
Never download or install software or files suggested in the pop-up. This could introduce malware to your system.
Do Not Provide Personal Information:
Do not enter personal or financial information in the pop-up. Scammers may use this data for identity theft or fraud.
Use Task Manager to Close the Browser:
If the pop-up is persistent and won't close through regular means, use the Task Manager (Ctrl+Shift+Esc on Windows, Option+Command+Esc on Mac) to end the browser process.