SpyAgent is a malicious program targeting Android devices. This malware has several data-stealing functionalities, which have been used to steal cryptocurrency wallets. SpyAgent infiltrates systems under the guise of legitimate or innocent-sounding applications; close to 300 fake apps were discove
During our review of oneqanet24[.]com, we found it to be an untrustworthy website that presents misleading content to trick users into allowing it to send notifications. Users are advised to avoid visiting oneqanet24[.]com and permitting it to deliver notifications. It is worth noting that users l
During our examination of oefanyorbesttn[.]info, we noticed that it is an unreliable web page displaying misleading content to get permission to show notifications. We also learned that oefanyorbesttn[.]info can redirect to similar pages. Users should not visit oefanyorbesttn[.]info. Oefan
While inspecting nowtopsite[.]site, our team found that this page is designed to trick visitors into taking action, which leads to granting permission to send unwanted notifications. Nowtopsite[.]site uses a method known as clickbait to achieve its goal. Users should avoid visiting such websites a
Our research team found the news-wuweyo[.]com rogue page while browsing questionable websites. This webpage endorses browser notification spam and redirects users to other (likely untrustworthy/hazardous) sites. Most visitors enter news-wuweyo[.]com and similar pages via redirects caused by websi
Our team has inspected notifzone[.]com and concluded that it is a shady web page that is created to trick visitors into granting it permission to send notifications. It is worth noting that users do not intentionally open pages like notifzone[.]com. If encountered, notifzone[.]com should be closed
Our team has examined this email and concluded that it is a scam email (a phishing attempt) masquerading as a notification from OpenSea regarding a new offer. Usually, scammers use phishing emails like this one to extract personal information. Recipients should ignore emails of this type.
News-wurinu[.]com is the address of a rogue page discovered by our researchers during a routine investigation of suspicious websites. Upon examination, we learned that news-wurinu[.]com promotes browser notification spam and generates redirects to other (likely untrustworthy/hazardous) sites. Use
While analyzing news-silasa[.]cc, we found that it uses clickbait (displays deceptive content) to trick visitors into allowing it to send notifications. Additionally, we discovered that news-silasa[.]cc can redirect visitors to other websites of this type. Users should avoid visiting news-silasa[.
Hlas is ransomware from the Djvu family. Once a computer is infected with the malware, files become encrypted and renamed (with the ".hlas" extension in their filenames). A ransom note (named "_readme.txt") is also provided. An example of how encrypted files are renamed is "1.jpg" being changed to