Our analysis of ovitchon[.]com shows that it uses a misleading method to persuade users to allow browser notifications. After permission is granted, these notifications may be abused to deliver unwanted and annoying content. For this reason, users should never agree to get notifications from pages
AuraStealer is a malware-as-a-service (MaaS) infostealer written in C++. It is offered through tiered subscriptions: Basic at $295/month, Advanced at $585/month, and a Team plan for collaborative use. The malware targets various applications, including web browsers and their extensions. If detecte
VVS is a Python‑based information‑stealing malware. It primarily targets Discord data and information saved in web browsers. The VVS stealer utilizes PyArmor to obfuscate its code, making analysis more difficult and enabling it to evade detection by security tools. If VVS is noticed on a device, i
We have reviewed cikadron.co[.]in and determined that it uses a deceptive tactic to get users to enable browser notifications. Once accepted, these notifications can be used to promote potentially malicious content. Thus, users are strongly advised to avoid granting notification permissions to cik
Our team has inspected the website (claim-lobster[.]xyz) and determined that it is a cryptocurrency scam. The site offers visitors free tokens (to participate in a crypto airdrop) as a lure. However, victims would never receive any tokens and may have their wallets emptied. Thus, this page should
We have analysed the website (claim-fish[.]xyz) and discovered that it promotes a fraudulent airdrop. The site imitates the original rainbowfish platform (rainbowfish.vip) to trick visitors into interacting with it. The goal is to steal cryptocurrency from unsuspecting individuals. IMPORTANT
Our research shows that timesearches.com is a fake search engine. It is distributed through the Time Search browser extension, which is a browser hijacker. Typically, browser hijacking involves changing browser settings. Using timesearches.com can lead to redirects to potentially harmful pages, so
We have reviewed the site (official-brevis[.]network) and determined that it is a scam. This is a fraudulent copy of the original Brevis platform (brevis.network). It is designed to lure visitors into taking steps that allow scammers to drain their wallets. Users should not trust this page to prev
We have discovered that elitesearchhub.com is a fraudulent search engine. It is promoted via the Elite Search browser extension, which hijacks browsers by modifying settings. Visiting the site may redirect users to unsafe websites. Therefore, it is recommended to avoid both the site and the extens
Our analysis shows that noneouarate[.]com uses a misleading method to persuade users to allow browser notifications. Once enabled, these notifications are abused to advertise other unreliable websites. For this reason, users are strongly advised not to grant notification permissions to noneouarate