Our team has examined the email and concluded that it is a phishing attempt. It is disguised as a notification from the email service provider and includes a deceptive link that is used to trick recipients into opening a fake login page. The goal is to steal personal information from unsuspecting
We have checked the website (register-chain[.]link) and found that it promotes a fraudulent airdrop (cryptocurrency giveaway). Also, it mimics the original Chainlink site (chain.link) to appear legitimate. The purpose of this page is to steal cryptocurrency. Thus, it should not be trusted. I
Our team has examined Backups and found that it is a variant of the Beast ransomware. Once executed on a system, it encrypts files and appends the victim's ID and the ".BACKUPS" extension to filenames. Also, the ransomware creates a ransom note ("README.TXT"). We have discovered it while inspectin
Our analysis of amencers.co[.]in reveals that it employs a misleading notification request designed to manipulate users into granting permission to deliver notifications. After approval, the site can exploit this feature to send spammy and deceptive notifications, so users should avoid visiting it
Homefindhub.com is the address of a fake search engine. This type of webpage cannot provide search results. These search engines are usually promoted (via redirects) by browser hijackers. In addition to the lack of functionality, illegitimate search engines usually collect information about their
While investigating untrustworthy websites, our researchers found a HyENA trading platform imitating page. It is an almost perfect visual copy of the legitimate site, with just a single letter different in its domain. The goal of this scam webpage is to deceive users into exposing their cryptowall
After inspecting this "cPanel Mailbox Settings Might Need An Update" email, we determined that it is fake. This spam message falsely claims that there is an issue concerning the recipient's cPanel settings. The purpose of this spam campaign is to lure users into disclosing their email account log-
During a routine investigation, our researchers discovered a webpage that impersonates the Jupiter DeFi platform (jup.ag). The page we found is designed to deceive users into exposing their digital wallets to a cryptocurrency drainer. Essentially, this scam aims to steal its victims' digital asset
Our research team discovered sogionowlid[.]com while browsing untrustworthy sites. Upon examination, we learned that this rogue page promotes browser notification spam and redirects users to different (likely unreliable/dangerous) websites. Most visitors to webpages like sogionowlid[.]com enter th
Cancouss.com is a rogue webpage designed to deceive visitors into permitting browser notification delivery. It is also capable of producing redirects to other (likely unreliable/dangerous) sites. Our researchers discovered this page while investigating websites that use rogue advertising networks