Totalprotection-2023[.]store is a rogue webpage that we discovered while inspecting suspicious sites. It is designed to promote scams and browser notification spam. Additionally, totalprotection-2023[.]store can redirect users to other (likely untrustworthy/harmful) websites. Visitors to rogue pa
After examining this scam, we learned that its purpose is to trick unsuspecting users into calling a fake technical support number. The page running this scam shows multiple deceptive messages claiming that a computer is infected and urging to contact "Windows Support". Users should ignore this sc
After inspecting the "Microsoft Outlook Mailbox Configuration" email, we determined that it is spam. The letter is presented as a notification regarding the recipient's Microsoft Outlook email client configuration. This phishing mail aims to trick recipients into disclosing their email account log
Upon analyzing the HelperFormat application, our team has concluded that it generates advertisements, leading us to categorize it as a typical form of adware. Another detail regarding HelperFormat is that we found it while examining deceitful websites. Interacting with ads shown by Helpe
Our examination of reliablepcsearch[.]com has revealed that the website promotes the "McAfee - Your PC is infected with 5 viruses!" scam and requests permission to display untrustworthy notifications. It is important to understand that none of the messages displayed on this website are authentic.
Our research team discovered the Volume Booster Max browser extension while inspecting scam websites. This piece of software is presented as a tool capable of boosting the volume of audio played via browsers. However, our inspection of this extension revealed that it operates as advertising-suppor
PSWSTEALER is the name of a stealer-type malware. It is designed to extract and exfiltrate sensitive information from systems and installed applications. Stealers can target a wide variety of data and are considered to be significant threats to user privacy/safety. PSWSTEALER is a stealer,
While analyzing the Dynamic malware, we discovered that it operates as an information stealer. Moreover, it downloads the BlackNET remote access trojan (RAT) on infected computers. Using both of these malicious programs, threat actors can steal sensitive information, take control of infected compu
Our researchers discovered the Airplanes - New Tab browser extension during a routine inspection of deceptive websites. It promises to provide airplane-themed backgrounds for browsers. Our analysis revealed that this extension modifies browser settings in order to cause redirects to the mbextensi
We have inspected yourshields24[.]com and found that this page shows deceptive messages implying that the visitor's device may be infected and offering antivirus protection. Also, yourshields24[.]com asks for permission to show notifications and opens other web pages. This website targets Android