Our research team found the "Security Checkup In Progress" scam during a routine inspection of dubious websites. It claims that the user's device is infected and urges them to address the detected issues. Typically, scams of this kind are used to promote software. Upon accessing a site run
While investigating suspicious sites, our researchers discovered the CallGuard PUA (Potentially Unwanted Application). This app claims to protect users from unwanted calls by aiding with unknown number identification. Software can fall into the PUA classification due to the dubious methods used fo
Our team reviewed Easy2Convert and determined that it is an unwanted application. While it claims to quickly convert files to PDF, multiple security vendors flag it (and its installer) as malicious. Because of this, we suspect it may perform harmful activities on users’ systems. Overall, Easy2Conv
Our researchers discovered the texonnero.co[.]in rogue page while browsing suspicious websites. After examining this webpage, we determined that it endorses browser notification spam and redirects users to different (likely untrustworthy/malicious) sites. Most visitors to texonnero.co[.]in and pa
Our inspection of the "Invoice Payment Confirmation" email revealed that this message is fake. It is presented as a notification concerning a payment, an alert about a sent invoice. The goal of this spam campaign is to trick recipients into disclosing their email account log-in credentials to a ph
During our inspection, we found that news-fujaya[.]cc is a deceptive site that uses clickbait to get permission to send notifications. If news-fujaya[.]cc is allowed to show notifications, it can deliver fake alerts, warnings, offers, and similar content to promote untrustworthy pages. New
We have analyzed tavonnero.co[.]in and determined that it uses clickbait (a deceptive method) to trick visitors into agreeing to get its notifications. When tavonnero.co[.]in obtains permission to show notifications, it delivers fake warnings and other misleading messages to promote other unreliab
Our analysis shows that this is a phishing email posing as a letter from the UK government. It includes a link designed to download a file that contains a phishing form. The purpose of this scam email is to steal personal information from recipients. Thus, the email should be ignored and deleted.
Our review of belianuria[.]com found that the site displays a deceptive message to trick visitors into allowing notifications. If permitted, it may send misleading alerts that link to deceptive or malicious websites. Due to this behavior, belianuria[.]com is unsafe and should be avoided. B
STD is a Remote Access Trojan (RAT). Malware of this kind enables remote access and control over infected devices. The first discovered sample of this trojan was compiled on the 14th of February, 2025. The STD program is used by threat actors tracked as the "STD Group"; they also utilize several