DriveSurge compromises thousands of legitimate websites to silently infect visitors with FakeUpdates or ClickFix manipulations via zTDS traffic steering and sells system access to other cybercriminals.
Large-scale malware distribution operation hijacks legitimate websites through TDS systems to redirect users to malicious sites and reveals critical gaps in the domain trust chain.