"Google Pay" is a spam email campaign designed to proliferate Taurus stealer - information stealing malware. The deceptive emails distributed in this campaign are presented as payment confirmation notices. The messages have DocuSign-themed attachments. When these attachments are opened and macro
MinePass is an adware-type browser extension. It is designed to run intrusive advertisement campaigns and collect users' private data. Due to the questionable techniques used to distribute adware products, they are also categorized as PUAs (Potentially Unwanted Applications). Adware enable
SecureTab is a rogue browser extension classified as a browser hijacker. It modifies browsers, promotes the securetab.xyz fake search engine, and tracks browsing data. Additionally, due to the dubious methods used to spread browser hijackers - they are also considered to be PUAs (Potentially Unwan
Crypto giveaway scams are fraudulent attempts to trick unsuspecting people into believing that if they send money (in this case, XRP cryptocurrency), they will receive more of it in return. Usually, these crypto scams impersonate companies and individuals. Scammers behind this crypto givea
Mrvk3 is a piece of malicious software categorized as ransomware. It is designed to encrypt data (lock files) and demand ransoms for the decryption. Encrypted files are appended with a ".mrvk3" extension. For example, a file initially titled "1.jpg" would appear as "1.jpg.mrvk3", "2.jpg" as "2.jp
Checker-online[.]com attempts to get permission to deliver its notifications and promotes questionable pages (redirects visitors to those pages). It shares the same qualities with beparaspr[.]com, news-helaga[.]cc, and everalyearsfou[.]xyz, and lots of other pages that users do not visit intention
Myfreshspot[.]com is an untrustworthy website sharing similarities with re*.biz, hdvideosnet.com, positivestar.org, and many others. This rogue page operates by loading dubious material and/or redirecting visitors to various (likely harmful or outright malicious) sites. These webpages are typical
Brainychoose-captcha[.]top asks for permission to show notifications and opens questionable websites. It is improbable for this page to be visited on purpose. Most likely, it gets opened through shady ads, websites, or potentially unwanted applications (PUAs). Brainychoose-captcha[.]top en
Fmiint is a ransomware-type program. It is designed to encrypt data (render files inaccessible) and demand payment for the decryption. Affected files are appended with a ".fmiint-sqnsxris" extension, e.g., a file titled "1.jpg" would appear as "1.jpg.fmiint-sqnsxris", etc. After this process is co
Funtoday[.]info displays a fake CAPTCHA to get permission to show its notifications and redirects to questionable websites. Funtoday[.]info is similar to thdedukicatio[.]xyz, beparaspr[.]com, news-helaga[.]cc, and plenty of other pages that users do not open voluntarily. Funtoday[.]info cl