Webtetradslive[.]com is a rogue page discovered by our research team during a routine investigation of suspicious websites. After inspecting the webpage, we determined that it endorses browser notification spam and redirects visitors to different (likely unreliable/dangerous) sites. Users primari
While browsing dubious sites, our researchers discovered a family of rogue webpages sharing the "sec-tl" domain. Pages belonging to this group differ by the number in their domain – sec-tl-129-b[.]buzz is an example. The purpose of these webpages is to trick visitors into enabling browser notific
Goodtosearch.com is an illegitimate search engine. This site cannot provide search results, so it redirects to other fake or genuine search engines. Websites of this kind are often endorsed by browser hijackers. Goodtosearch.com has also been observed featuring in redirection chains caused by brow
While inspecting a Torrenting website that uses rogue advertising networks, our researchers discovered a deceptive page endorsing a rogue installer. The setup contained the EasySearch browser extension. Upon analysis, we learned that it is a browser hijacker. EasySearch modifies browser settings t
We have inspected the site (valbox[.]live) and concluded that it is a scam website promoting a fake giveaway. The purpose of this scam web page is to trick individuals into disclosing personal information. Users should avoid providing any details on dubious sites to avoid potential consequences.
During our analyzis of uponminunan[.]com, we discovered that it is a fraudulent website that uses a clickbait technique to trick visitors into allowing it to deliver notification to their devices. We also found that uponminunan[.]com can redirect visitors to other web pages. Therefore, users shoul
Doktox.com is a fake search engine. While this page is capable of providing search results, they are inaccurate and may include sponsored and possibly harmful content. Websites of this kind are commonly promoted (via redirects) by browser hijackers. Our researchers discovered doktox.com when anal
While analyzing gotoyahoo.com, we found that it is a fake search engine promoted via browser hijackers (extensions like Image Size Info). Fake search engines and extensions promoting them should be avoided. If they are present within browser settings and (or) added to browsers, they should be remo
Our researchers found videov-click[.]com while browsing dubious websites. This rogue page endorses browser notification spam and redirects users to different (likely untrustworthy/hazardous) sites. Most visitors enter webpages like videov-click[.]com via redirects generated by websites utilizing r
King is a ransomware variant from the Proton family. Our team discovered King while inspecting malware samples submitted to VirusTotal. This ransomware encrypts files, appends an email address and the ".king" extension to filenames, and creates a file named "#Read-for-recovery.txt" (a ransom note)