While browsing questionable websites, our researchers found the ultimatesafeguard[.]com rogue page. It operates by promoting scams and spam browser notifications. Additionally, this webpage can redirect users to other (likely dubious/malicious) sites. Most visitors enter pages like ultimatesafegu
Our research team found the Ace AdBlocker browser extension while browsing untrustworthy sites. This piece of software is endorsed as an ad-blocking tool. However, upon inspection, we determined that Ace AdBlocker is adware. Instead of removing advertisements, it displays them. Additionally, this
After our review of the "ShareFile - Invoice Copy" email, it became clear that this is a phishing scam. This spam letter targets email account log-in credentials (i.e., passwords) through an imitator website. The spam email with the subject "SOA - Invoice copy on 3/19/2024 3:46:35 p.m." (m
"McAfee - Your Computer Is Severely Damaged" is a scam discovered by our researchers during a routine investigation of dubious websites. Comprising a fake system scan and multiple threat alerts, this scheme aims to deceive users into downloading/installing the promoted software. It must be emphas
MalwareHunterTeam is a renowned group of cybersecurity researchers and analysts recognized for their efforts in detecting and analyzing malware threats. Unfortunately, threat actors have exploited this name by adopting it for ransomware attacks. The purpose of MalwareHunterTeam ransomware is to en
In our examination, we found that searchokay.com serves as a link in redirection chains used by browser hijackers. Thus, if users encounter redirects involving searchokay.com, it suggests that their browsers may have been hijacked by a suspicious extension (browser hijacker). Browser hijac
Weyshare[.]com is a fake cryptocurrency platform. After our examination, it became evident that this scam website aims to trick users into transferring cryptocurrency to scammers. It might also operate as a phishing site targeting log-in credentials. As mentioned in the introduction, weysh
During our investigation, we discovered that searchingdb.com acts as an intermediary in redirection chains utilized by browser hijackers. Therefore, if users experience redirects to and from searchingdb.com, it is likely that an untrustworthy extension has hijacked their browsers. Browser
During our examination, we discovered that Dragon Search Solutions functions as a browser hijacker. Its primary aim is to promote a fake search engine by modifying the settings of the hijacked browser. Additionally, Dragon Search Solutions possesses the ability to access specific user data.
Through our analysis of the SorbusAucuparia app, we determined that it is a malicious extension distributed using a deceptive page. SorbusAucuparia can enable the "Managed by your organization" feature, read and change various data, and manage other extensions (and themes). Thus, affected users sh