Our researchers found the Shopping Helper+ browser hijacker while investigating suspicious websites. This extension is endorsed as a tool that improves the online shopping experience. Shopping Helper+ alters browser settings to promote the ocsrchrdr.com fake search engine (potentially others).
Searchmycurrency.com is a fake search engine that our researchers discovered while analyzing the Search My Currency browser hijacker. Websites of this kind usually cannot provide search engines and redirect to legitimate search engines. It is noteworthy that searchmycurrency.com could also be endo
While investigating rogue websites, our researchers discovered the Nviqri Someq Utils PUA (Potentially Unwanted Application). After analyzing this software, we determined that it infiltrates the Legion Loader malware into systems. Usually, Potentially Unwanted Applications (PUAs) possess u
Our analysis of conthlogiseirib.co[.]in has uncovered that it is a deceptive website crafted to manipulate visitors into granting permission for notifications. Once granted, this permission is exploited to promote scams and other unreliable web pages. Therefore, users should never agree to receive
Our research team discovered the SearchVPN browser extension while investigating dubious websites. This software is promoted as a VPN (Virtual Private Network) client. After analyzing this extension, we determined that it is a browser hijacker. SearchVPN modifies browser settings to promote a fake
After testing search.noted-it.com, we concluded that it is a fake search engine. Moreover, we discovered that it is promoted through a browser hijacker, an unwanted extension called NotedIt. Thus, it is highly advisable not to use search.noted-it.com and remove the associated extension if it is pr
During our analysis of Spectra browser extension, we learned that it is a browser hijacker. Upon adding this extension, it changes the settings of a browser to promote nwsrc4you.com. Spectra can expose users to scams and other online threats, and cause privacy issues. Thus, users should avoid addi
We have inspected the CryptData malware and found that it is ransomware from the MedusaLocker family. Our discovery of CryptData occurred during an analysis of samples uploaded to VirusTotal. This ransomware encrypts files and appends the ".cryptdata" extension to them. It also changes the desktop
Our research team discovered the calmarean.co[.]in rogue page while investigating suspicious websites. After inspecting this webpage, we learned that it promotes browser notification spam and redirects users to other (likely unreliable/hazardous) sites. Calmarean.co[.]in and similar pages are prim
Our analysis of bencapuran.co[.]in has revealed that it is one of the many deceptive websites designed to trick visitors into granting them permission to show notifications. Bencapuran.co[.]in uses this permission to promote various scams and other untrustworthy web pages. Thus, this site should n