India, May 26 -- A locked browser can feel like a locked computer. That confusion is exactly what CypherLoc appears to exploit.

Barracuda Research has linked the scareware kit to about 2.8 million attacks since early 2026. The campaign does not rely on traditional malware installed on a device. Instead, it uses phishing, browser controls, fake warnings, and live phone fraud to make victims believe their machine is in danger.

A web page may create panic, but it does not truly control the computer.

The attack usually begins with a phishing email containing a link or attachment. When the victim opens the page, it may look harmless at first. Behind the scenes, the page checks whether the right conditions are present before the scareware ac...