14 DAY TRIAL // While it might not be as difficult to remove as other types of ransomware, Browlock, which blocks browsers in an attempt to trick users into paying a fine, can still help cybercriminals make a hefty profit. Researchers from F-Secure say that the threat now targets Russian users.
When victims visit a Browlock website, they’re presented with a “lock page” that informs them that they must pay 1,000 Rubles ($27 / €20), otherwise they can go do prison for accessing illegal content on the Internet.
The message appears to come from Russia’s Ministry of Internal Affairs. Victims are told that they must make the payment within 12 hours. Once the payment is made, they’ll receive a code that unlocks the browser.
When users try to close the tab, the following error message appears: “Your browser will be blocked up for safety reasons. All the information on your PC is arrested. All your files are encrypted.”
The message is displayed several times on the screen (see screenshot). Experts say that this is actually a long dialog box. It has an OK button, but users can’t see it because it’s outside the screen. However, if you press the ENTER key, the alert disappears and you can resume browsing.
The tests performed by F-Secure have shown that the browser locker only works on Chrome.