The RIG exploit kit, which at its peak infected an average of 27,000 machines per day, has been grafted with a new tool designed to hijack browsing sessions.
The malware in question, a rootkit called CEIDPageLock, has been distributed through the exploit kit in recent weeks.
The malware targets Microsoft Windows systems. The dropper extracts a 32-bit kernel-mode driver which is saved in the Windows temporary directory with the name “houzi.sys.” While signed, the certificate has now been revoked by the issuer.
[b][i]Have you fallen victim to the malware – CEIDPageLock? Let us know in the comments below or on the full article page.[/i][/b]
[b]Read Full Article:[/b ][url=”https://www.zdnet.com/article/meet-the-malware-which-hijacks-your-browser-redirects-you-to-fake-pages/#ftag=TRC-03-10aab5e”] Meet the malware which hijacks your browser and redirects you to fake pages[/url]