at first I thought this was a simple clickjacking but because they were spamming CPA offers, but clickjack can only steal a single click and cannot do anything other than just clicking.
What's most likely is that you were infected with a drive by download via a zero-day browser exploit.
This is because as you described, the moment you clicked the link, you witnessed the damage. This can only be executed by a malware that was downloaded with your knowledge by simply viewing a page with various exploit payload.
You can't really not use noscript at all since most sites require it.
What I'd recommend is to use VirtualBox OS, and use Linux distro. OR use a Mac (even though I hate Apple 99% of exploits are for MS)
Antivirus software provide false sense of security. fresh zero day exploits take a while before they are detected. Crypted malware can remain undetectable (depending on quality and complexity) anywhere from a few days to a year.
What's most likely is that you were infected with a drive by download via a zero-day browser exploit.
This is because as you described, the moment you clicked the link, you witnessed the damage. This can only be executed by a malware that was downloaded with your knowledge by simply viewing a page with various exploit payload.
You can't really not use noscript at all since most sites require it.
What I'd recommend is to use VirtualBox OS, and use Linux distro. OR use a Mac (even though I hate Apple 99% of exploits are for MS)
Antivirus software provide false sense of security. fresh zero day exploits take a while before they are detected. Crypted malware can remain undetectable (depending on quality and complexity) anywhere from a few days to a year.
