Our research indicates that bravixnoro.co[.]in employs misleading tactics to trick users into allowing notifications. Once permission is granted, the site abuses it to send spam messages, often featuring fake alerts and deceptive content. For these reasons, it is strongly recommended to avoid visi
Our analysis shows that it is a fake email presented as a notification regarding a failed verification. It is crafted to trick recipients into opening the included link and entering personal information. Emails of this type are classified as phishing messages. Recipients should recognize such emai
DeadLock is ransomware that encrypts files and appends the victim's ID and its extension (".dlock") to files. For instance, it renames "1.jpg" to "1.jpg.F8C6A8.dlock", "2.png" to "2.png.F8C6A8.dlock", and so forth. It also creates a ransom note (its name contains the victim's ID, e.g., "READ ME.F8
Fophothiogle.co[.]in is a rogue page found by our researchers during a routine inspection of suspect websites. After examining this webpage, we determined that it promotes spam browser notifications and produces redirects to different (likely unreliable and/or dangerous) sites. Most visitors to f
"Your Statement Is Available For Review" is malspam. This malicious spam message alerts the recipient of a mandatory document review. The purpose of this email is to trick victims into installing a malicious ScreenConnect installer onto their devices. It must be emphasized that this mail is not as
Our researchers discovered this fake "Noice Rewards" page during a routine investigation. It impersonates the Noice.so website yet bears no association with it. The deceptive webpage claims that poll voters can receive an early TPF allocation. This scam operates as a cryptocurrency drainer – by si
While investigating untrustworthy sites, our research team found this fake "Axelrod Rewards" webpage. It runs a poll that the voters on which will be eligible to receive allocations. The goal is to lure victims into exposing their digital wallets to a crypto drainer. It must be emphasized that thi
After reviewing the site register-mamo[.]info, our team determined that it is a fraudulent copy of the official Mamo (mamobot) website. This deceptive page falsely advertises an early token allocation to trick users into taking actions that ultimately enable scammers to steal their cryptocurrency.
Our team has inspected the site (claim2trade[.]fun) and concluded that it is a copy of the original tradedotfun (trade.fun) website. This deceptive page pretends to host a cryptocurrency airdrop (giveaway). Its goal is to lure unsuspecting individuals into performing actions that allow scammers to
Our analysis has shown that navixzuno.co[.]in uses a deceptive tactic to trick visitors into granting it permission to show notifications. Moreover, if navixzuno.co[.]in obtains this permission, the site misuses it to deliver spam messages, often containing fake warnings and similar content. Overa