While browsing questionable websites, our research team discovered newsandads[.]top. This rogue page promotes browser notification spam and redirects visitors to other (likely untrustworthy/dangerous) sites. Most users access newsandads[.]top and analogous webpages via redirects caused by website
Highlevelnetwork.co[.]in is a rogue webpage discovered by our researchers during a routine investigation of suspicious sites. Upon inspection, we learned that this page endorses browser notification spam and produces redirects to other (likely unreliable/dangerous) websites. The majority of users
Moroccan Dragon is the name of a ransomware-type program. It is designed to encrypt files and demand payment for the decryption. On our testing system, Moroccan Dragon encrypted files and appended their names with a ".vico" extension. To elaborate, an original filename like "1.jpg" became "1.jpg.
After inspecting this "Payment Schedule Document" email, we determined that it is spam. This message claims that the recipient was sent a document detailing the payment schedule for the month. This email is fake, and its goal is to lure victims into visiting a phishing website that targets account
PlayPraetor is a trojan-type malware targeting Android devices. It is a multi-functional program capable of stealing a wide variety of information from compromised systems. PlayPraetor has been spread through a massive campaign utilizing fake Google Play Store webpages. PlayPraetor is prol
We have inspected bedoq[.]info and learned that its purpose is to deceive visitors into agreeing to receive its notifications. Once this is achieved, bedoq[.]info sends dubious notifications to promote other potentially malicious websites. Users should avoid bedoq[.]info and never permit it to sho
We have reviewed cqwyjj[.]click and determined that it is a deceptive site created to manipulate visitors into granting permission for notifications. Once permission is given, cqwyjj[.]click displays misleading notifications that promote other questionable websites. Therefore, this site should be
KoSpy is spyware targeting Android users who speak Korean and English. It masquerades as utility apps, employs a two-stage C2 infrastructure, and gathers a wide range of data from compromised devices. The malware is distributed through Google Play and third-party app stores such as APKPure.
Upon reading this "Transfer On Death" email, we determined that it is spam. This message is a supposed proposal to add the recipient to a deceased client's insurance policy, thus enabling them to take possession of the Transfer On Death (TOD) deed. In other words, the scheme is to divide between
We have inspected sayadsleads[.]top and found it to be a misleading website designed to trick visitors into granting it permission to show notifications. Once sayadsleads[.]top has this permission, it displays deceptive notifications to promote other dubious websites. Thus, this site should be avo