LayerX research pointed out that the campaign is particularly difficult to stop because of various factors, including being hosted on a Microsoft Platform, adding credibility, using legitimate and trusted hosting service, and using randomized, and quickly changing subdomains.
“In the past few weeks, we’ve seen an uptick in browser-based phishing attacks that use legitimate hosting services to trick users into falling for the attack,” Thomas Richard, red team practice director at Black Duck said in a comment to CSO. “The ruse they use is a fairly old one and quite common.”
Such random popups saying “your computer is compromised” should always be treated with suspicion, as antivirus services will never ask you to enter a username and password to remove a threat, Richard added.