While browsing untrustworthy websites, our researchers discovered a fake "Solana L2 Presale". This is a phishing scam that lures users into disclosing their cryptocurrency wallet log-in credentials through a fraudulent presale event. It must be emphasized that this "Solana L2 Presale" is not assoc
After inspecting this "Your Cloud Storage Is Full" email, we determined that it is spam. This fake message claims that the recipient's cloud storage is full and multiple threats have been detected therein. The goal of this spam campaign is to redirect recipients to various (likely deceptive/malici
After investigating this "$TWOCS Token Presale", we determined that it is fake. The scam lures users with a token presale event and deceives them into disclosing their digital wallets to a cryptocurrency drainer. IMPORTANT NOTE: We do not review crypto projects, please do your own research w
Sarcoma Group ransomware is malware that encrypts files and appends its extension to files (e.g., it renames "1.jpg" to "1.jpg.xp9Mq1ZD05", "2.png" to "2.png.xp9Mq1ZD05", etc). The appended extension may differ depending on the specific ransomware sample. In addition to encrypting and renaming fil
Our team reviewed the page (sol-shadow[.]com) and determined that it is a fake website created to lure unsuspecting users with a deceptive cryptocurrency presale offer. Its main goal is to trick visitors into actions that could lead to financial loss. This website should be ignored and closed if e
Our research team found the venesemise[.]com rogue page while investigating suspect websites. It operates by promoting browser notification spam and redirecting users to other (likely deceptive/malicious) sites. Most visitors access venesemise[.]com and similar webpages through redirects caused by
Llowofthenamf[.]org is a rogue webpage discovered by our researchers during a routine inspection of suspicious sites. After examining this page, we learned that it endorses browser notification spam and generates redirects to different (likely dubious/hazardous) websites. The majority of visitors
Our researchers discovered the Cool Ad Popup Blocker browser extension while investigating untrustworthy websites. This software is promoted as an adblocker capable of blocking advertisements, pop-ups, and trackers – thus providing an overall improved and secure browsing experience. After inspecti
During our inspection of networksearchflow.co[.]in, we found that it promotes the "You've visited illegal infected website" scam. This page displays deceptive content and requests permission to show notifications. Allowing sites like networksearchflow.co[.]in to send notifications can expose users
We have analyzed rprldnwsq1[.]xyz and discovered that it is designed to lure visitors into accepting its notifications. Once this page has permission to show notifications, it bombards users with unwanted ads and other content that can expose users to scams and other online threats. Thus, rprldnws