XSSLite is an information stealer. It was developed as part of a monetary prize-driven competition held on a Russian hacker forum. There are several variants of this malware; the original version written in the C# programming language was made available for free by the developers, while another va
44Caliber is a notorious information stealer malware known for its sophisticated capabilities. Information stealers are malicious programs designed to covertly extract sensitive data from infected devices (e.g., login credentials, financial information, and personal documents). Thus, users who hav
Our researchers discovered mtxadvert[.]com while investigating suspicious websites. Upon inspection, we determined that this rogue webpage promotes browser notification spam and redirects users to other (likely dubious or malicious) sites. Most visitors to mtxadvert[.]com and pages akin to it acc
During our analysis of the goabeefoad[.]com website, we discovered its utilization of deceptive tactics, specifically clickbait, aimed at enticing unaware visitors to consent to receive notifications. Numerous comparable pages to goabeefoad[.]com exist, and it is essential to highlight that users
In our examination of the bemadsonline[.]com page, we found that it uses a deceptive method (clickbait) to lure unsuspecting visitors into agreeing to receive its notifications. There are numerous examples of pages similar to bemadsonline[.]com. It is worth noting that they can redirect users to o
In our examination of the Fast Cars browser extension, we have noted that it alters browser settings to favor a particular address, a behavior commonly referred to as browser hijacking. Users should avoid adding browser hijackers to their browsers to mitigate potential complications. Once
In our investigation of the Wallpaper Ext app, we observed that this extension is created to function as a browser hijacker. Its primary goal is to change the settings of a web browser. Apps of this type should not be trusted, and users are advised to remove them from affected browsers. Br
Psoastourd[.]com is the address of a rogue page discovered by our researchers during a routine inspection of untrustworthy websites. This webpage is designed to promote browser notification spam and redirect users to different (likely unreliable/hazardous) sites. Visitors to psoastourd[.]com and
While inspecting new submissions to VirusTotal, our research team found the ControlMethod application. Our examination revealed that it is adware from the AdLoad malware family. ControlMethod operates by running intrusive advertisement campaigns. Adware stands for advertising-supported s
Our researchers discovered the Prizm Search browser extension while inspecting questionable websites. After analyzing this piece of software, we learned that it is a browser hijacker. This extension operates by changing browser settings to promote (via redirects) the vsrcunow.com fake search engin