We have inspected the Wise Search browser extension and found that it hijacks browsers to promote a fake search engine. In order to achieve this, Wise Search changes the settings of a web browser. Thus, users of hijacked browsers are forced to visit a specific address (use the promoted fake search
While browsing suspicious websites, our researchers discovered the henidspost[.]com rogue page. After investigating it, we determined that this webpage endorses browser notification spam and redirects users to other (likely untrustworthy/malicious) sites. Most users enter pages like henidspost[.]c
Our researchers found the DefaultService application while inspecting new submissions to the VirusTotal website. Upon examination, we determined that this app is adware from the AdLoad malware family. It operates by delivering intrusive ad campaigns and may possess other harmful abilities.
We have inspected newsparty[.]top and discovered that it is an unreliable web page designed to deceive visitors into granting it permission to show notifications. Newsparty[.]top uses a technique known as clickbait to receive this permission. Also, newsparty[.]top may cause redirects to similar we
We have analyzed the website and found that it runs the "You've Visited Illegal Infected Website" scam. It uses scare tactics to trick visitors into agreeing to receive notifications and paying for a security tool. Typically, when users agree to receive notifications from sites like ruopors.co[.]i
After inspecting this "$SWOT Token Airdrop", as promoted on the swotai[.]xyz webpage, we determined that it is fake. This scam imitates the Swot AI platform (swotai.org). When a user attempts to take part in the bogus giveaway, they expose their digital wallets to a cryptocurrency drainer. Hence,
We have examined this email and determined that this a fraudulent letter crafted by scammers. The email is disguised as a notification regarding a payment. It claims that recipients are entitled to a large sum of money. The purpose of this scam is to extract money and (or) information from unsuspe
We have inspected the Satoshi VM Airdrop site (drop-satoshivm[.]app) and found it to be a scam website mimicking the real SatoshiVM web page (satoshivm[.]io). The fake site is designed to trick visitors into believing they can obtain free cryptocurrency. Scammers use this site to drain crypto wall
Upon analyzing the TaskIndexer app, we observed that it inundates users with intrusive advertisements. These ads can promote dubious and potentially harmful websites. Consequently, we categorized TaskIndexer as adware. It is typical for software of this nature to be disseminated through deceptiv
WebIndex is a rogue application discovered by our researchers during a routine inspection of new file submissions to the VirusTotal website. After examining this app, we determined that it is advertising-supported software (adware). WebIndex is part of the AdLoad malware family. The purp