While analyzing the app, we found that Save Turtle Tab (despite offering turtle-themed wallpapers for the homepage) operates as a browser hijacker. Once added to a browser, the Save Turtle Tab extension modifies the settings to promote a counterfeit search engine. Save Turtle Tab is crafte
Coyote is a banking trojan. This malware is designed to extract sensitive information from devices, and it predominantly seeks data related to online banking. Coyote targets over sixty Brazilian banks. This malicious software is sophisticated and boats a complex infection chain. The infect
During our inspection, we discovered that while Car Club Wallpapers provides high-resolution wallpapers for the homepage, it also functions as a browser hijacker. When added to a browser, the Car Club Wallpapers extension alters some settings to promote a fake search engine. Car Club Wallp
Pyropage is promoted as a browser extension that enhances the browsing experience by offering personalized features. However, upon examination, it was found to tamper with browser settings, redirecting users to a dubious search engine. Such behavior falls under the category of browser hijacking.
During our examination of the NetProcess application, we discovered that it exhibits intrusive advertisements to users, indicating its classification as adware. Adware applications like NetProcess not only display ads but also often collect user data, making them untrustworthy. NetProces
Upon examining the email, we found that it intends to deceive recipients into disclosing personal information through a fraudulent website. This email is disguised as a quotation for an order and falls under the category of phishing emails. Recipients should ignore emails of this type. The
BeachBall Jump is advertised as a browser extension offering a soothing in-browser game experience. However, upon inspection, we found that it exhibits characteristics of adware. Once added, the extension inundates users with intrusive advertisements. Given its adware traits, it is advisable to av
Solan, a Python-based information-stealing malware, is known for its stealthy operations in pilfering sensitive data from various sources, including web browsers and social media platforms like Facebook. Additionally, Solan specifically targets a browser extension associated with cryptocurrency ac
Quacky[.]club is a rogue webpage that our research team discovered during a routine inspection of dubious sites. This page is designed to endorse browser notification spam and redirect users to other (likely unreliable/dangerous) websites. Most visitors to webpages like quacky[.]club access them v
Our researchers discovered the Omni Ad Stopper rogue browser extension during a routine investigation of suspect sites. This piece of software is endorsed as an adblocker – a tool that blocks online advertisements. However, upon examination, we determined that Omni Ad Stopper is advertising-suppor