GoDaddy Security researchers have unveiled a detailed analysis of Help TDS, a sophisticated Traffic Direction System operational since at least 2017, which exploits compromised websites to funnel traffic toward malicious scams.
This operation supplies affiliates with PHP code templates that are injected into legitimate sites, primarily WordPress installations, to redirect visitors to fraudulent pages mimicking Microsoft Windows security alerts.
These alerts employ advanced browser manipulation techniques, such as full-screen takeovers and exit prevention scripts, to trap users and coerce them into calling fake tech support lines.
gbhackers.com
