After inspecting the "Smartcolor Password Expiry" email, we determined that it is spam promoting a phishing scam. This mail is presented as a password expiration alert, which is intended to lure recipients into disclosing their email account log-in credentials. The spam email with the subj
Our inspection of the "Abu Dhabi National Oil Company (ADNOC)" email revealed that it is fake. This spam letter is presented as an invitation for vendors, contractors, suppliers, and other potential partners to receive an ITT (Invitation To Tender). The goal of this email is likely to collect sen
Our research team discovered totaldailyposts[.]com while browsing dubious websites. Upon inspection, we learned that this rogue page pushes browser notification spam and redirects users to other (likely unreliable/malicious) sites. Most visitors enter webpages like totaldailyposts[.]com via redir
Suddss[.]com is a rogue website discovered by our research team during a routine investigative browsing session. After inspecting this page, we determined that it promotes browser notification spam and generates redirects to other (likely untrustworthy/malicious) sites. Most visitors to suddss[.]
During the examination of undowinowing[.]com, we found that the site employs a deceptive method to receive permission to show its notifications. Once permission is granted, undowinowing[.]com can send intrusive and deceptive notifications. Consequently, users should avoid visiting the site and, mo
Our research team found the masented[.]com rogue page while investigating dubious websites. After examining it, we learned that it promotes spam browser notifications and redirects visitors to different (likely unreliable/harmful) sites. Masented[.]com and similar pages are most commonly accessed
While analyzing unadshub[.]com, we found that it employs a clickbait tactic to gain permission to display notifications. Usually, pages like unadshub[.]com can send fraudulent notifications. Therefore, users should avoid accepting notifications from unadshub[.]com and remove permission to show the
While reviewing new malware submissions to the VirusTotal website, our researchers discovered Cipher ransomware. This malicious program is part of the Proton ransomware family. Malware of this kind encrypts data and demands payment for the decryption. On our testing system, Cipher (Proton) ransom
Flesh is information-stealing malware targeting Windows users. It is capable of extracting sensitive data from web browsers and Discord. Once it has collected the stolen data, it is sent to a remote server controlled by the attacker for malicious use. If a computer is infected with Flesh stealer,
During the analysis of toneincludes[.]com, we discovered that this page uses clickbait to get permission to display notifications. Once this permission is granted, toneincludes[.]com can deliver intrusive and fraudulent notifications. Therefore, users should not accept notifications from toneinclu