Discovered by our researchers during a routine investigation, mafirst[.]site is a rogue webpage. It promotes spam browser notifications and redirects visitors to other (likely untrustworthy/harmful) sites. Users typically enter pages like mafirst[.]site via redirects caused by websites that use ro
After inspecting the "Review Pending Messages" email, we determined that it is spam. The letter makes false claims about received messages in order to trick users into disclosing their email account log-in credentials (passwords) to a phishing website. The spam email informs the recipient
During our examination of chotorexsurvey[.]space, we found that it is an unreliable website that shows a fake survey and asks for permission to show notifications. Also, chotorexsurvey[.]space, leads users to other websites. Our team discovered chotorexsurvey[.]space while inspecting sites that us
While inspecting suspect websites, our research team discovered the aumsuthysurvey[.]space rogue page. It is designed to promote questionable content and spam browser notifications. Additionally, this webpage can redirect users to other (likely unreliable/harmful) sites. Pages like aumsuthysurvey
Nature-tab.xyz is the address of an illegitimate search engine. It cannot generate search results and redirects to a genuine Internet search website. The fake pages are typically endorsed (via redirects) by browser hijackers. Sites of this kind and the software promoting them usually collect sensi
Upon inspection of the JoyTab - Your News application, we have concluded that it is a browser extension created to seize control of web browsers through browser hijacking. This extension alters browser settings to force a fake search engine (find.csrcnav.com) on users. Moreover, Webb Telescope - N
Poop69 is a ransomware-type program that our researchers discovered while investigating new submissions to VirusTotal. Malware within this classification is designed to encrypt data and demand payment for its decryption. On our testing system, Poop69 encrypted files and appended their filenames w
During our examination of websites that utilize deceptive advertising networks, we encountered crystalcrafter[.]top, a fraudulent website that displays deceptive content to trick users into accepting notifications. Moreover, visiting uuksehinkitwkuo[.]com can result in visiting other untrustworthy
During our testing of mtabs.org, we discovered it to be a fake search engine. Pretty often, search engines of this type are promoted through browser hijackers. Typically, these types of applications change the browser settings to hijack them. Therefore, search engines that are promoted in this way
Upon examination, we determined that it is a technical support scam designed to trick users into believing that their device has a critical issue that needs immediate attention. This scam involves a pop-up message that warns users of a problem, followed by a prompt to call "Windows Support" for as