cactus-search.com is a fake search engine, promoted by a browser hijacker called Cactus Search. While it’s being promoted as an extension that uses ad revenue to help plants from becoming extinct, it has browser hijacker characteristics. While it’s not a malicious infection, it can install without explicit permission and will hijack the browser by changing its settings. It will set cactus-search.com…
The “Spotify Can’t Process Your Payment” email is part of a phishing campaign that tries to steal users’ Spotify login credentials. The email claims that Spotify cannot process your payment for the Spotify Premium Family plan and asks that you double-check the payment details. The email links to a phishing site that asks you to log in to your Spotify account.…
The “You Visited Some Hacked Websites With Exploit” email is part of a sextortion campaign that tries to trick users into sending scammers money. The sender claims to have infected the recipient’s computer with malware via a hacked website, which allowed them access to the recipient’s computer. Supposedly, they noticed the user visiting adult websites and made a video of them…
The “Virus Intrusion Into Our Office 365 Webmail Server” email is part of a phishing campaign that tries to steal users’ email login credentials. The email is disguised as a notification from the users’ email service provider and informs the recipients that, because of a virus intrusion in their Office 365 webmail server, they need to do a full server sweep.…
searcherbright.com is a fake search engine promoted by a browser hijacker. If this site loads every time you open your browser, your computer is likely infected with a hijacker that sets the site as your homepage. Browser hijackers are generally not malicious or serious infections because they do not harm the computer directly. Instead, they change the browser’s settings and…
Companies operating in Lithuania are reportedly being targeted by a “Patvirtinkite el. pašto adresą – (SB-rVjHPzRNz8Wzlp)” phishing attack that aims to steal their Swedbank online banking login credentials. The email is disguised as a notification from Swedbank, supposedly informing the recipient that a customer is trying to update their account, and this action needs to be confirmed by the recipient. If…
larygeously.co.in is a deceptive website that tries to trick users into allowing desktop ads. To do this, it misuses a legitimate browser feature that allows sites with permission to show notifications on users’ desktops. But instead of useful/interesting notifications, sites like larygeously.co.in spam advertisements. Those ads will not only be annoying but may also expose users to potentially dangerous content, including…
The “Default Judgement” email is part of a phishing campaign that tries to steal users’ email login credentials. The email claims that a “Default Judgment” will be entered in “the matter referenced above”. According to the email, the recipient has ignored all prior notices and correspondence and is now being given 48 hours to submit a written response. The email contains…