Our team has inspected mergechain.co[.]in and learned that it presents misleading messages and other content to trick visitors into taking certain actions. Also, mergechain.co[.]in requests permission to show notifications. We discovered that notifications from this site often include fake warning
Our inspection of SearchNinja extension has shown that it is a browser hijacker created to promote a fake search engine by modifying the settings of a web browser. We also found that SearchNinja can activate the "Managed by your organization" feature. Users should avoid adding SearchNinja to their
We have inspected the PDF Converter Online extension and found that it has traits of adware, a type of software that generates advertisements. It is common for adware to be utilized to promote questionable sites, apps, services, etc. Thus, it is advisable to avoid adding PDF Converter Online Adwar
DarkN1ght is ransomware based on Chaos ransomware. We have discovered DarkN1ght during our analysis of samples submitted to VirusTotal. Once the malware infiltrates the system, it encrypts files, appends different extensions (four random characters, e.g., ".3hok") to filenames, and drops its ranso
Our researchers discovered the mergenetworkprotocol.co[.]in rogue page while investigating dubious websites. After examining it, we learned that this webpage endorses browser notification spam and redirects users to different (likely unreliable/harmful) sites. The majority of users access mergene
While browsing suspicious websites, our researchers discovered the "iolo - Your PC is infected with 18 viruses!" scam. It masquerades as iolo software warning the user of various serious threats on their devices. It must be emphasized that the claims made by this scam are false, and it is not ass
NoviSpy is a malicious program targeting Android devices. It is classed as spyware – a type of malware designed for stealthy surveillance and data theft. NoviSpy activity has been associated with the Serbian Security Intelligence Agency (BIA). During the last several years, this spyware has been
We have reviewed pectorsed[.]com and concluded that it is an unreliable web page created to lure visitors into granting it permission to show notifications. Moreover, if the site has permission to send notifications, it bombards users with fake alerts and other messages. Overall, pectorsed[.]com c
Our analysis of grimpoaltoumpa[.]com reveals that it uses deceptive tactics to trick users into granting notification permissions. Once allowed, it can deliver fake and misleading notifications, often promoting potentially harmful websites. Therefore, grimpoaltoumpa[.]com is unreliable and should
Our research team discovered the unlockcontent[.]org rogue page during a routine inspection of suspicious websites. Upon investigation, we determined that this webpage endorses browser notification spam and generates redirects to different (likely unreliable/malicious) sites. The majority of visi