Threat Scorecard

Ranking: 1,806
Threat Level: 20 % (Normal)
Infected Computers: 389
First Seen: August 29, 2023
Last Seen: September 30, 2023
OS(es) Affected: Windows is yet another misleading website attempting to exploit its users. The site functions in a manner that is nearly identical to other dubious websites that misuse the otherwise legitimate push notifications feature. These websites heavily rely on clickbait and social-engineering strategies to manipulate their visitors into clicking the 'Allow' button that's presented to them. The deceptive messages typically aim to obscure the true consequence of clicking the button, which is to subscribe users to the page's push notifications.

Interacting with Rogue Sites Like is not Recommended

One of the most commonly employed false scenarios by rouge pages such as involves the deceptive page simulating a CAPTCHA verification process. Another approach entails presenting a video window that seems to be encountering some unspecified technical problem. It's crucial to note that a single malicious website could seamlessly transition between various scenarios based on the incoming IP addresses and the geographical locations of its visitors. In terms of the messages displayed, they could manifest as different versions of the following:

  • 'Click Allow to access'
  •  'Press Allow to prove you're human'
  •  'Click Allow to initiate download'
  •  'Click Allow if you are not a robot'

If manages to gain the necessary permissions from the web browser, it will exploit these permissions to launch an intrusive advertising campaign. Users should be cautious, as advertisements originating from such unverified sources are rarely genuine. More often than not, these advertisements are more likely to promote additional fraudulent destinations, including fake giveaways, suspicious adult platforms, gambling websites and more.

Pay Attention to the Red Flags Associated with a Fake CAPTCHA Check

Distinguishing a fake CAPTCHA check from a legitimate one is essential to avoid falling victim to scams or malware. Here are some red flags that can help users identify a fake CAPTCHA check:

  • Sudden Appearance: If a CAPTCHA prompt appears unexpectedly, especially on a reputable website, it might be suspicious. Legitimate CAPTCHAs are typically integrated into the website's login or submission process.
  •  Unusual Request for Permissions: Legitimate CAPTCHAs do not require permission to access your device or browser. If you're prompted to grant permission, especially if it seems unrelated to CAPTCHA, be cautious.
  •  Content or Design Inconsistencies: Check for inconsistent design, formatting, or language usage. Fake CAPTCHAs may exhibit poor graphics, misspelled words, or an unfamiliar layout.
  •  Requests for Personal Information: Legitimate CAPTCHAs only ask you to verify that you're human, typically through image recognition or solving puzzles. They never ask for personal or sensitive information.
  •  Misspelled or Poorly Worded Text: Fake CAPTCHAs may contain misspellings, grammatical errors, or awkwardly phrased sentences. Legitimate ones are usually well-written.
  •  Absence of Accessibility Options: Legitimate CAPTCHAs often include accessibility options for users with disabilities. If these are missing, it's a warning sign.

Remember that legitimate CAPTCHAs are designed to prevent automated bots from abusing a website's functionality. If something seems off about the CAPTCHA prompt you encounter, it's wise to exercise caution, avoid interacting with it, and consider navigating away from the website.

URLs may call the following URLs:


Most Viewed