Our team has inspected the website (claim-rkgen[.]xyz) and found that it poses as the original KGeN site (kgen.io). The fraudulent site promotes a fake crypto allocation to trick visitors into connecting their wallets. Victims of this scam risk losing their cryptocurrency holdings. IMPORTANT
Stealit is a multifunctional malicious program that operates as a RAT (Remote Access Trojan), spyware, stealer, and ransomware. There is a Windows and an Android version of this malware. Stealit's developers are offering it for sale online. Stealit has anti-analysis mechanisms – including
Ginitificarter[.]com is a rogue webpage discovered by our researchers while investigating suspicious sites. It is designed to endorse browser notification spam and generate redirects to other (likely unreliable/hazardous) websites. Most visitors to ginitificarter[.]com and similar pages access the
Our researchers discovered the homesearcherplace.com fake search engine during a routine investigation. Sites of this kind are usually promoted (via redirects) by browser hijackers. Illegitimate search engines are rarely capable of generating search results, and homesearcherplace[.]com is no excep
Audiosearchpro.com is a fake search engine that our researchers discovered while analyzing the Audio Search Pro browser hijacker. This rogue browser extension is promoted as a tool for searching audio content, including sound loops and effects, music, and podcasts. Browser hijackers generate redir
Our examination shows that experflas.co[.]in tries to convince visitors to enable its notifications. If allowed, the site can send deceptive notifications, which may expose users to harmful content. Thus, users should not trust experflas.co[.]in and avoid agreeing to receive notifications from it.
We have tested videosearcherpro.com and concluded that it is a fake search engine. Moreover, our analysis shows that videosearcherpro.com is promoted through an unwanted extension called Video Search Pro that hijacks a web browser. Users are advised to avoid using fake search engines and browser h
Tendingum[.]com is a rogue webpage discovered by our researchers during a routine inspection of suspicious sites. This page is designed to promote browser notifications spam and redirect users to other (likely dubious/dangerous) websites. The majority of visitors to tendingum[.]com and analogous
MonsterV2 is promoted as a remote access trojan (RAT), information stealer, and malware loader. It is developed using C++, Go, and TypeScript. can carry out multiple actions while present on the infiltrated device. It is known that is MonsterV2 operating primarily as either a stealer or a malware
Our researchers discovered the quenxnero.co[.]in rogue webpage while investigating dubious sites. Upon inspection, we learned that this page promotes browser notification spam and generates redirects to different (likely unreliable/hazardous websites. Quenxnero.co[.]in and similar webpages are mo