Our research team found the CommonConsole app while browsing new file submissions to the VirusTotal platform. Upon inspection, we learned that it is advertising-supported software (adware) belonging to the AdLoad malware family. CommonConsole generates revenue for its developers/publishers throu
Our researchers discovered the gossipfeast[.]club rogue page while browsing untrustworthy websites. When we examined this webpage, we found that it uses a fake CAPTCHA test to promote browser notification spam. Additionally, gossipfeast[.]club can redirect visitors to other (likely dubious/malicio
News-tab.com is a fake search engine promoted by News-Tab. This browser extension modifies browser settings to endorse (through redirects) the news-tab.com site. Due to this behavior, this software is categorized as a browser hijacker. We discovered News-Tab while investigating suspicious websites
Our inspection of the "Account Department" email revealed that it is spam. This phishing letter uses a "payment schedule document" lure to trick users into, most likely, disclosing their email log-in credentials. The spam email with the subject "Payment Schedule July 2024.xlsx" (may vary)
We have inspected the email and learned that it is a scam email posing as a letter from Westside Auto Wholesale (a legitimate company selling used cars). The scammers utilize this email to trick recipients into revealing personal information. Such emails are classified as phishing emails.
Upon inspecting this "Claim $HAM" site, we determined that it is fake. This scam is presented as a giveaway distributing the Hamster Coin (HAM) cryptocurrency. Instead, this bogus airdrop operates as a cryptocurrency drainer. Victims of the "Claim $HAM" scheme experience financial loss. IMPO
We have inspected junctionspeedforum.co[.]in and discovered that the purpose of this page is to lure visitors into agreeing to receive its notifications. Junctionspeedforum.co[.]in displays a deceptive message to achieve that. Users should not trust junctionspeedforum.co[.]in and avoid visiting su
Pomochit is a ransomware-type program discovered by our research team during a routine review of new submissions to VirusTotal. This malware is part of the MedusaLocker ransomware family. Pomochit encrypts files with the goal of obtaining payment for the promise of decryption. On our test machine
While examining thezileads[.]com, we found that this is a deceptive website that uses a clickbait technique to trick visitors into permitting it to send notifications. It is important to note that notifications from pages like thezileads[.]com cannot be trusted. Thus, users should avoid agreeing t
Our analysis of sespaphizes[.]com has shown that this website uses a clickbait technique to trick visitors into taking a certain action. There are numerous examples of web pages similar to sespaphizes[.]com, and all of them have the same purpose. Users should avoid visiting such web pages.