Our research team discovered the Great Start - Homepage browser hijacker while inspecting extensions distributed through the Chrome Web Store. Despite its harmless-sounding name, this extension changes browser settings to promote greatstartapp.com, a page connected to a fake search engine. Great
Our researchers found My Focal Find while analyzing a rogue installation setup and noticed that it has the traits of a browser hijacker. Once added to a browser, this extension changes its settings to promote myfocalfind.com, a fake search engine. This article explains what My Focal Find does, ho
Our researchers came across the Earth 3D browser hijacker while reviewing extensions that modify browser search settings. Earth 3D changes the browser's homepage, new tab page, and default search engine to earth3d.net. The extension is promoted as a tool for viewing 3D satellite imagery directly
Wanderlustar is a browser extension that we inspected and found to have the traits of a browser hijacker. It is marketed as a travel-themed new tab tool that displays scenic photos and lets users search the web. Once added to the browser, however, it changes search and new tab settings to wanderlu
Our researchers inspected the Earth browser extension, available on the Chrome Web Store, and found that it has the traits of a browser hijacker. Although it is marketed as a tool for viewing satellite imagery, adding it to the browser changes the default search engine to earthapp.net, a page that
Our researchers tested the Nautilus Notes Chrome extension and found that it has the traits of a browser hijacker. While it presents itself as a sticky-note tool for the new tab page, installing it changes browser settings to promote under-cover.info, an address also pushed by other similar extens
We inspected the PerfecTab browser extension and found that it has the characteristics of a browser hijacker. PerfecTab is promoted as a New Tab replacement with a clock, to-do list, bookmarks, notes, and wallpapers, but once added to a browser it also changes search-related settings to push the u
Our research team discovered recheck[.]co.in while examining dubious websites. After inspecting this page, we determined that it promotes browser notification spam and generates redirects to other (likely unreliable or harmful) sites. Most visitors reach recheck[.]co.in through redirects triggered
We have examined this email and determined that it is a phishing scam. It is disguised as an urgent notice from a webmail service provider, falsely warning that the recipient's domain account is about to expire. The goal is to trick users into visiting a fraudulent website where their login creden
We have examined this email and determined that it is a phishing scam. It is disguised as a security notice from the recipient's email service provider, falsely claiming that account settings require immediate review. The goal is to trick recipients into entering their login credentials on a fraud