In the course of our inspection of the Stocks Manager application, we came across the finding that this browser extension changes the settings of a browser by modifying its settings to promote a shady search engine. Apps like Stocks Manager are classified as browser hijackers and should not be tru
While investigating deceptive sites, our research team discovered the Searchify PUA (Potentially Unwanted Application). The name of this rogue software is borrowed from a legitimate online tool that allows developers to add a search function to websites and apps. However, it must be stressed that
CHAVECLOAK is a malicious banking Trojan targeting users in Brazil. This Trojan is crafted with the intention of stealing sensitive financial information, such as banking credentials and personal data, from Brazilian users. It typically spreads through phishing emails containing a malicious PDF fi
The "Juice Finance's Airdrop" is a scam that imitates the Juice DeFi platform. This fake airdrop aims to trick users into exposing their digital wallets to a crypto drainer. Hence, victims of this scheme risk losing their digital assets. The page running "Juice Finance's Airdrop" that we i
During our assessment of the earthheartsmith[.]com page, it was discerned that it is designed to trick visitors into allowing it to show notifications. Earthheartsmith[.]com uses a clickbait technique to achieve it. Additionally, earthheartsmith[.]com may redirect users to similar pages. E
In our analysis of the NetVerify Suite application, we observed its promotion as a security tool with a real-time scanning feature. However, it also exhibits intrusive advertisement behavior. Consequently, we categorized NetVerify Suite as adware. It is advisable to avoid having adware installed o
This cryptocurrency scam masquerades as a MAGA airdrop, exploiting the political movement's name to lure unsuspecting individuals into its trap. Behind the facade of a legitimate airdrop lies a scheme designed to deceive users into performing certain actions that lead to sending cryptocurrency to
Upon analysis, we have determined that this email is a lottery scam crafted by scammers to entice recipients to divulge personal information and send money. This particular letter is disguised as a notification from DHL concerning a prize. It should be disregarded to prevent financial loss and oth
During our assessment of the Reload malware, we found that it is ransomware (from the Makop family) designed to encrypt files. We discovered Reload during an examination of malware samples submitted to VirusTotal. In addition to encrypting data, Reload drops a ransom note ("+README-WARNING+.txt")
Our researchers discovered the Load Time browser extension while inspecting dubious websites. It is endorsed as a tool that allows users to identify and monitor website loading times. After analyzing Load Time, we determined that this extension is advertising-supported software (adware). A