While investigating suspect sites, our researchers discovered this fake "GetFit Mining" webpage – getfitmining.pages[.]dev (note that this scam could also be hosted on other domains). It is presented as a blockchain platform that offers users various rewards and purchase opportunities. This schem
Upon examining thoabsoul[.]com, we concluded that it is an untrustworthy website hosting a fraudulent survey. Also, thoabsoul[.]com aims to receive permission to send notifications to devices. Users should not grant sites like thoabsoul[.]com permission to show notifications and avoid visiting the
Our team has inspected srmadsmebook[.]org and discovered that it is one of the numerous websites designed to trick visitors into agreeing to receive their notifications. Once visited, srmadsmebook[.]org presents misleading content to lure visitors into permitting it to show notifications.
During an examination of malware samples uploaded to VirusTotal, our team discovered a ransomware variant known as Moon. This ransomware encrypts files and renames them by appending a string of various characters and the ".moon" extension to filenames. Also, Moon drops a ransom note named "README.
We have inspected protectedscans[.]com and found it to be a misleading website. On protectedscans[.]com, visitors are presented with a fake warning and a request to show notifications. Websites like protectedscans[.]com should never be visited or allowed to send notifications. Protectedsca
Our research has shown that it is a scam email offering recipients a large sum of money in return for cooperation. Typically, scammers behind scams like this (known as advance-fee scams) seek to trick recipients into sending them money and (or) personal information. It is advisable not to respond
Webtetradslive[.]com is a rogue page discovered by our research team during a routine investigation of suspicious websites. After inspecting the webpage, we determined that it endorses browser notification spam and redirects visitors to different (likely unreliable/dangerous) sites. Users primari
While browsing dubious sites, our researchers discovered a family of rogue webpages sharing the "sec-tl" domain. Pages belonging to this group differ by the number in their domain – sec-tl-129-b[.]buzz is an example. The purpose of these webpages is to trick visitors into enabling browser notific
Goodtosearch.com is an illegitimate search engine. This site cannot provide search results, so it redirects to other fake or genuine search engines. Websites of this kind are often endorsed by browser hijackers. Goodtosearch.com has also been observed featuring in redirection chains caused by brow
While inspecting a Torrenting website that uses rogue advertising networks, our researchers discovered a deceptive page endorsing a rogue installer. The setup contained the EasySearch browser extension. Upon analysis, we learned that it is a browser hijacker. EasySearch modifies browser settings t