Threat Scorecard

Ranking: 1,031
Threat Level: 20 % (Normal)
Infected Computers: 12,986
First Seen: June 6, 2022
Last Seen: February 15, 2023
OS(es) Affected: Windows

Users who land on the Hehighursoo.com website should be careful. The page has been confirmed to utilize clickbait and misleading messages in an attempt to trick visitors into unknowingly subscribing to its push notifications. The behavior of the site is, in no way unique. In fact, deceptive websites propagating the same tactic have been emerging on the Internet for quite a while.

All of these untrustworthy pages try to exploit the legitimate push notifications browser feature. By getting users to press the displayed 'Allow' button, the hoax websites receive the browser permissions they require to start generating unwanted advertisements. The true intentions of these dubious pages are often hidden under various false scenarios. The most common one sees the page pretending to be doing a CAPTCHA check. Hehighursoo.com has been observed to display a loading bar, stuck at 99%. It then displays prominently a message similar to:

'Click the Allow button to subscribe to the push notifications and continue watching'

Users are highly encouraged to ignore such instructions completely. Otherwise, they will fall into the page's trap, and start receiving advertisements for questionable and potentially unsafe destinations. Interacting with the advertisements also could trigger forced redirects, leading to shady phishing portals, fake giveaways, questionable online betting or gaming platforms, etc.


Most Viewed