Canvas Tab
Threat Scorecard
EnigmaSoft Threat Scorecard
EnigmaSoft Threat Scorecards are assessment reports for different malware threats which have been collected and analyzed by our research team. EnigmaSoft Threat Scorecards evaluate and rank threats using several metrics including real-world and potential risk factors, trends, frequency, prevalence, and persistence. EnigmaSoft Threat Scorecards are updated regularly based on our research data and metrics and are useful for a wide range of computer users, from end users seeking solutions to remove malware from their systems to security experts analyzing threats.
EnigmaSoft Threat Scorecards display a variety of useful information, including:
Ranking: The ranking of a particular threat in EnigmaSoft’s Threat Database.
Severity Level: The determined severity level of an object, represented numerically, based on our risk modeling process and research, as explained in our Threat Assessment Criteria.
Infected Computers: The number of confirmed and suspected cases of a particular threat detected on infected computers as reported by SpyHunter.
See also Threat Assessment Criteria.
| Threat Level: | 50 % (Medium) |
| Infected Computers: | 99 |
| First Seen: | November 23, 2022 |
| Last Seen: | June 11, 2023 |
| OS(es) Affected: | Windows |
The Canvas tab is a browser extension that is being promoted on its own official page. It is presented to users as a convenient tool that will allow them to draw on the new browser tabs they open and then save the created artwork. However, once activated on their device, users will quickly realize that the Canvas tab also has some browser-hijacker capabilities that have impacted several, important settings of their browsers.
More specifically, the application will take control over the browsers' new tab page, homepage and default search engine. All of the modified settings will now begin redirecting to a promoted Web address. The Canvas tab generates artificial traffic toward srchingot.com, a fake search engine. Fake engines are not equipped with the functionality necessary to produce search results on their own. Users will instead receive results taken from a different source. In this case, the initiated search queries will be further redirected through the legitimate Bing search engine. It is essential to keep in mind that some browser hijackers can adjust the sources of the displayed results based on factors, such as users' IP addresses and geolocations.
Another risk often associated with adware, browser hijackers, and PUPs (Potentially Unwanted Programs) is the possibility of the invasive application having data-tracking capabilities. These could manifest in the application's ability to monitor the browsing activities carried on the device, collect device details or even extract sensitive data from browsers' autofill data. In the last case, users may have confidential information, such as account credentials, banking details or credit/debit card numbers compromised.
