DriveSurge compromises thousands of legitimate websites to silently infect visitors with FakeUpdates or ClickFix manipulations via zTDS traffic steering and sells system access to other cybercriminals.
Hacked websites are systematically exploited by DriveSurge as a malware distribution channel using deceptively authentic update and clickbait techniques.