We have examined nocksolanvente[.]com and concluded that the purpose of this web page is to obtain permission to show notifications. It uses clickbait, a misleading technique, to trick users into accepting its notifications. Usually, notifications from pages like nocksolanvente[.]com are deceptive
Rapidreporters[.]site is a rogue page discovered by our researchers during a routine investigation of dubious websites. Upon inspection, we learned that rapidreporters[.]site endorses browser notification spam and generates redirects to different (likely unreliable/hazardous) sites. Most visitors
Our researchers discovered jpokl[.]click while browsing suspect websites. This rogue page endorses browser notification spam and generates redirects to different (likely unreliable/dangerous) websites. Most users access jpokl[.]click and analogous webpages via redirects caused by sites that utiliz
After examining this groomee[.]click rogue page, we determined that it endorses browser notification spam and generates redirects to different (likely untrustworthy/hazardous) websites. Most users enter webpages like groomee[.]click via redirects caused by sites utilizing rogue advertising networ
SpyLend is a malicious program targeting Android devices. It can be utilized in a variety of ways, yet its primary use is to function as "SpyLoan" malware. At the time of writing, this software operated as "SpyLoan" when installed on devices located in India. It offers Indian users predatory loan
Our analysis of safetoworkwith[.]com revealed that the site presents misleading messages and requests permission to show notifications. Notifications from safetoworkwith[.]com are also deceptive and can lead users to unreliable websites. Thus, it is highly advisable to avoid safetoworkwith[.]com.
We have examined newspulse360[.]site and determined that this page cannot be trusted. It displays deceptive content to lure visitors into allowing it to show notifications and uses these notifications to push other unreliable websites. If encountered, newspulse360[.]site should be closed.
Kotalq App is a PUA (Potentially Unwanted Application) that acts as a dropper for the Legion Loader malware. Our researchers discovered an installer containing Kotalq App promoted on a rogue webpage. In addition to the malware, this PUA also dropped the fake "Save to Google Drive" browser extensi
While inspecting malware samples submitted to VirusTotal, we discovered Loches, ransomware from the GlobeImposter family. Loches encrypts data, appends ".loches" to files, and provides a ransom note ("how_to_back_files.html"). An example of how Loches renames files: it changes "1.jpg" to "1.jpg.lo
After examining this "Login From A New Device" email, we determined that it is spam. This fake message alerts the recipient that their email account was signed into from a new device. This spam mail attempts to lure recipients into disclosing their account log-in credentials to a phishing webpage.