The “Capital One – Do you recognize this purchase” email is part of a phishing campaign that targets users’ Capital One login credentials. The phishing email claims that there was an unrecognized purchase from the recipient’s account. It’s disguised as a security notification and asks recipients to either confirm the purchase was made by them or to cancel the transaction…
The “Sign-in Attempt Was Blocked” email is a phishing email that aims to steal users’ email login credentials. The email falsely claims that someone tried to use the recipient’s password to sign in to their account but the attempt was blocked. The email recommends that the recipient check the account’s activity to see what happened. To do that, it provides a…
baselanding.site is a deceptive website that not only tries to trick users into allowing desktop ads but also displays a fake virus alert to trick users into downloading/purchasing highly questionable programs. When you get redirected to the site, you will immediately get a browser alert saying “baselanding.site wants to show notifications”. If you click “Allow”, you will allow the site…
The “FedEx Delivery Address Confirmation” email is part of a phishing campaign disguised as a FedEx delivery notification. The phishing email targets users’ email passwords by asking users to type them to confirm the delivery of their packages. However, this is a fake package notification, and interacting with it by typing your password would lead to your account being hijacked by…
The “Capital One – Unusual Spending Activities Detected” email is part of a phishing campaign that targets Capital One Business login credentials. The phishing email informs recipients that unusual spending activity has been detected on the account and that a message from Capital One’s Fraud Monitor Department needs to be reviewed to avoid account restrictions. The email has a button…
scanprotects.com is a deceptive website that tries to trick users into allowing ads on the desktop. It also displays a fake alert claiming that your personal information is at risk and promotes a questionable program to supposedly protect your data. When you get redirected to the site, you’ll get a browser alert saying “scanprotects.com wants to show notifications”, and if…
mergeconnection.co.in is a generic scam website that tries to trick users into allowing ads on the desktop. To do this, it misuses a legitimate browser feature that allows sites with permission to show notifications on users’ desktops. However, while legitimate sites would show legitimate content, mergeconnection.co.in and similar sites show ads. Those ads could also be dangerous and expose you to…
The “Capital One – Transfer Schedule” email is part of a phishing campaign that targets users’ Capital One login credentials. The email is disguised as a notification about an upcoming transfer of $6,920. The email has a “View transfer activity” button, which would lead users to a phishing site. Users who type in their Capital One login credentials may suffer…