Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I thought that too, but it doesn't apply. This is malware. It doesn't need someone to be gullible beyond the click of the button. Scams, on the other hand, require actually convincing the mark to send money, which is why they need to be sure they have a gullible person on the hook.


It's their button, why would they need the user to click it? I guess it could be clickjacking, but there must be an easier way to do that.


>It's their button, why would they need the user to click it?

Because Javascript is allowed to do more, like show popup windows, if it happens in an onclick event of a button.


But they do, most of these malware scams involve the user going to their website and buying their special malware removal tool.


Once you've actually infected a computer with malware it's a heck of a lot easier to convince the person to pay money to get rid of it.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: