WheelInstant is a rogue application that our researchers found while inspecting new submissions to VirusTotal. Our analysis of this app revealed that it operates as advertising-supported software (adware) and belongs to the AdLoad malware family. Adware is designed to display ads (e.g.,
While inspecting untrustworthy sites, our researchers discovered the shield-fordesktop[.]com webpage. It operates by promoting deceptive material (scams), pushing browser notification spam, and redirecting visitors to other (likely dubious/malicious) pages. Most users enter sites like shield-ford
While inspecting spam browser notifications, our research team found the "FedEx PACKAGE WAITING" scam. This scheme operates as a phishing scam, with the additional goal of tricking victims into subscribing to a paid service. It must be emphasized that all the claims made by this scam are false, a
While inspecting sites that use rogue advertising networks, our researchers discovered the "Win A New iPhone 13" scam. It operates as a phishing scam and may also attempt to extract money from victims under the guise of subscription fees. The scam claims that users have the chance to win a
CryptoWallet Address Replacing Virus refers to a system infection with a malicious program, which has clipper functionalities. Clippers (also known as clipboard hijackers) are designed to change the data copied into the clipboard. In this article we will analyze clippers designed to replace copie
Our researchers found the freecaptcha[.]top rogue webpage while checking out untrustworthy sites. This page is designed to push spam browser notifications and redirect visitors to different (likely unreliable/malicious) webpages. Most users enter them through redirects caused by websites using rog
While inspecting new submissions to VirusTotal, we found the ExpressionCargo rogue application. Our analysis revealed that this app operates as advertising-supported software (adware) and belongs to the AdLoad malware family. Adware is designed to display advertisements (e.g., pop-ups, b
Our research team discovered the trusted-captcha[.]top rogue page while inspecting dubious websites. It is designed to push browser notification spam and redirect visitors to other (likely untrustworthy/malicious) sites. Most users access such webpages through redirects caused by sites using rogue
While inspecting deceptive websites, our research team found the "LUNA Giveaway" scam. It promises users twice-fold the return on the cryptocurrency that users transfer to it. However, this giveaway is a scam, and all the funds given to it will be lost. To create the impression of legitimacy, the
Captchatest[.]top is a rogue webpage that we found while inspecting untrustworthy sites. This page is designed to push browser notification spam and redirect visitors to other (likely unreliable/malicious) websites. Users typically enter such webpages through redirects caused by sites using rogue