Our researchers discovered networkdeepchains.co[.]in while browsing dubious websites. After examining this rogue page, we learned that it promotes browser notification spam and generates redirects to different (likely unreliable/dangerous) sites. Most visitors access networkdeepchains.co[.]in and
After examining the "You Have Crucial Mails Pending" email, we determined that it is spam. It claims the recipient has several undelivered messages and urges them to upgrade their mailbox. This spam mail aims to steal recipients' email accounts through the promoted phishing website that targets th
Our examination of this email has shown that it is a fraudulent email designed to trick recipients into sending personal information and (or) money to scammers. Falling for such emails can result in monetary loss, identity theft, and other consequences. Thus, recipients should recognize such email
Azure Web Apps (aka Azure Static Web Apps) – azurestaticapps.net – is a legitimate cloud computing based platform that is part of the Microsoft Azure computer services group. Essentially, Azure Web Apps offers Web hosting services. This platform has been abused by cyber criminals to host deceptiv
Our team has inspected mybvids[.]com and concluded that the goal of the creators of this site is to trick visitors into agreeing to receive notifications from the page. Mybvids[.]com displays misleading content when trying to get this permission. Users should avoid visiting such pages. On
Our analysis of the email has shown that it is a fraudulent letter disguised as a notification from an email service provider. The scammers who created this email aim to extract personal information from recipients. It is worth noting that such emails are known as phishing emails. Recipients shoul
We have scrutinized the email and found that it is written by scammers who attempt to trick recipients into believing they have received a request for a company catalog. Fraudulent emails like this one fall into the category of phishing emails. Usually, the goal is to steal personal information.
SnipBot is a variant of RomCom remote access Trojan (RAT) that allows attackers to execute commands on a victim's system and download additional modules. The new variant employs a custom obfuscation technique along with advanced anti-analysis methods. Threat actors have been observed distributing
Our examination of ladsnow[.]com has revealed that the purpose of this web page is to deliver shady notifications. However, it cannot send them without user permission. To obtain this permission, ladsnow[.]com utilizes clickbait (a deceptive method). Users should not trust ladsnow[.]com and avoid
Our research team discovered this "Claim Aerodrome Rewards" scam, as promoted on distribution-aerodrome-6uo.pages[.]dev (could also be hosted elsewhere), during a routine investigation of suspect sites. This fake platform claims to be distributing various rewards. It operates as a cryptocurrency d