Basically it appears that the malware is installed via the classic drive-by download schemes. Once installed it hijacks one's browser and redirects searches to malware host sites. To make sure the browser's security features don't kick in and detect unauthorized modifications, Adrozek also modifies some of the browsers' DLL files to change browser settings and disable security features.
Currently it looks like Europe and Southeast Asia have been hit the hardest......, so far. But the attackers are determined to keep this going and it's sophisticated.
It can also extract credentials from the browser and upload them to the attacker's servers.
Microsoft exposes Adrozek, malware that hijacks Chrome, Edge, and Firefox | ZDNet
Currently it looks like Europe and Southeast Asia have been hit the hardest......, so far. But the attackers are determined to keep this going and it's sophisticated.
It can also extract credentials from the browser and upload them to the attacker's servers.
Microsoft exposes Adrozek, malware that hijacks Chrome, Edge, and Firefox | ZDNet