Our researchers found nextchainnet[.]com while browsing untrustworthy websites. After inspecting this rogue webpage, we learned that it promotes browser notification spam and generates redirects to other (likely unreliable/hazardous sites. Nextchainnet[.]com and similar pages are most commonly ac
During a routine investigation, our researchers discovered this fake "Keeta" webpage (keeta-ai[.]com; possibly other domains). The purpose of this scam is to trick users into exposing their digital wallets to a cryptocurrency drainer by luring them with an imitation of Keeta Network's official web
Upon inspecting ironcarver[.]top, we concluded that the site uses clickbait (a misleading tactic) to obtain permission to show notifications. If permitted, it can bombard users with annoying and deceptive warnings and other messages. Thus, ironcarver[.]top should be avoided. On ironcarver[
Our research team found the kyvixzuno.co[.]in rogue webpage during a routine inspection of suspicious sites. After examining this page, we learned that it endorses browser notifications spam and redirects visitors to different (likely questionable/malicious) websites. Kyvixzuno.co[.]in and simila
While investigating untrustworthy websites, our researchers discovered the sipicatatrania.co[.]in rogue page. Upon examination, we determined that it promotes browser notification spam and redirects users to different (likely unreliable/hazardous) sites. The majority of visitors to sipicatatrania
Our researchers found the RDAT ransomware during a routine inspection of new file submissions to the VirusTotal website. This malicious program belongs to the Dharma ransomware family. Ransomware is designed to encrypt data and demand ransoms for the decryption. When we executed a sample of RDAT
Our examination of drovixzaro.co[.]in has revealed that it uses a deceptive method to obtain permission to send notifications. If allowed, drovixzaro.co[.]in can send misleading notifications (e.g., fake alerts) to trick users into interacting with them. This site should not be trusted. Dr
QuirkyLoader is a malicious program classed as a loader. This type of malware is designed to download/install additional malicious programs or components onto compromised machines (i.e., cause chain infections). It has been used to deliver various data stealers and RATs (Remote Access Trojans). Q
We have tested the PDF Editor By AppSuite application and found that it is supposed to allow users to view, convert, fill, merge, sign, and compress PDF files. However, our research shows that it can cause unwanted redirects and have traits of a browser hijacker. Thus, it is advisable to avoid ins
We have examined install-check[.]com and found that it displays questionable content and wants to show notifications. Allowing install-check[.]com to send notifications can expose users to various online threats (e.g., scams and malware). Users should avoid visiting install-check[.]com. In