While delving into the NetField app, we stumbled upon the realization that it is an advertising-supported app (adware). The purpose of NetField is to display various (mostly annoying) online advertisements. It is uncommon for apps of this type to be installed by users intentionally. NetField and
Brook is a Remote Administration Trojan (RAT) built using the versatile Go programming language. It is a sophisticated tool with the added capability of extracting sensitive information. This combination of stealth and power makes Brook a formidable threat in the realm of cybersecurity, capable of
XSSLite is an information stealer. It was developed as part of a monetary prize-driven competition held on a Russian hacker forum. There are several variants of this malware; the original version written in the C# programming language was made available for free by the developers, while another va
44Caliber is a notorious information stealer malware known for its sophisticated capabilities. Information stealers are malicious programs designed to covertly extract sensitive data from infected devices (e.g., login credentials, financial information, and personal documents). Thus, users who hav
Our researchers discovered mtxadvert[.]com while investigating suspicious websites. Upon inspection, we determined that this rogue webpage promotes browser notification spam and redirects users to other (likely dubious or malicious) sites. Most visitors to mtxadvert[.]com and pages akin to it acc
During our analysis of the goabeefoad[.]com website, we discovered its utilization of deceptive tactics, specifically clickbait, aimed at enticing unaware visitors to consent to receive notifications. Numerous comparable pages to goabeefoad[.]com exist, and it is essential to highlight that users
In our examination of the bemadsonline[.]com page, we found that it uses a deceptive method (clickbait) to lure unsuspecting visitors into agreeing to receive its notifications. There are numerous examples of pages similar to bemadsonline[.]com. It is worth noting that they can redirect users to o
In our examination of the Fast Cars browser extension, we have noted that it alters browser settings to favor a particular address, a behavior commonly referred to as browser hijacking. Users should avoid adding browser hijackers to their browsers to mitigate potential complications. Once
In our investigation of the Wallpaper Ext app, we observed that this extension is created to function as a browser hijacker. Its primary goal is to change the settings of a web browser. Apps of this type should not be trusted, and users are advised to remove them from affected browsers. Br
Psoastourd[.]com is the address of a rogue page discovered by our researchers during a routine inspection of untrustworthy websites. This webpage is designed to promote browser notification spam and redirect users to different (likely unreliable/hazardous) sites. Visitors to psoastourd[.]com and