Our team has examined factor1right[.]com and found that this site offers to download a malicious file and asks for permission to send notifications. We discovered factor1right[.]com while inspecting pages that use shady advertising networks. Usually, users access sites like factor1right[.]com inad
During our analysis of the My Cloud Tab browser extension, our team discovered that it functions as a browser hijacker. The primary objective of this application is to promote search.mycloudtab.com, a bogus search engine. My Cloud Tab achieves browser hijacking by manipulating the browser's settin
We have examined this email and found that it is a phishing letter. Emails of this type are fraudulent emails sent by cybercriminals with the intention of tricking the recipient into revealing sensitive information such as login credentials or other personal data. In this case, the phishing email
Our researchers discovered the worldcommonjournal[.]com rogue page while investigating dubious websites. It is designed to promote browser notification spam and redirect users to other (likely unreliable/dangerous) sites. Visitors to worldcommonjournal[.]com and pages akin to it – primarily acces
Our research team discovered an installer containing the Tidings application while inspecting deceptive websites. After analyzing this app, we determined that it is advertising-supported software (adware). Tidings operates by displaying ads, and it may have additional harmful abilities. Ad
While investigating deceptive sites, our research team discovered the GPT Search Navigator browser extension. It promises to improve users' Google searches. Our inspection of this extension revealed that GPT Search Navigator is a browser hijacker promoting the ask.gptsearchnavigator.com fake searc
Our research team discovered the 726 ransomware during a routine inspection of new submissions to VirusTotal. It is designed to encrypt data and demand ransoms for decryption. After we executed a sample of 726 on our test system, the ransomware appended the files it encrypted with a "..726" exten
Our researchers discovered the "Avira Security" scam while inspecting untrustworthy websites. This scheme is presented as the Avira anti-virus that detects various threats on visitors' devices. It must be emphasized that this content is fake, and it is in no way associated with the actual Avira Op
While investigating suspicious websites, our researchers discovered the "TREZOR Assets Might Be At Risk!" phishing scam. Additionally, we found that this scheme is promoted via spam SMSes (smishing). This scam claims that users' Trezor cryptocurrency wallets might be at risk due to a data breach
While inspecting onlymp3[.]to, we found that it is one of the websites offering to download videos from YouTube. Also, it wants to show notifications and uses rogue advertising networks. Thus, users should not trust this page. It is important to note that downloading videos from YouTube may violat