Threat Scorecard

Threat Level: 20 % (Normal)
Infected Computers: 1
First Seen: March 24, 2022
Last Seen: April 7, 2022
OS(es) Affected: Windows is another hoax website, created to take advantage of its visitors. The exact tactic performed by the page is a popular one and countless other pages running it have already been flooding the Internet. They all operate in a practically identical manner - visitors will see misleading or false messages directing them to press the 'Allow' button and unknowingly enable the page's push notifications. Furthermore, the unfortunate users will most likely be taken there due to the actions of rogue advertising networks or intrusive PUPs (Potentially Unwanted Programs).

The specific scenario that might be presented to each user may vary, as some of the hoax pages scan the incoming IP address to determine the geolocation of the user and adjust their behavior accordingly. The most commonly used scenario sees the untrustworthy page try to convince users that pressing 'Allow' is part of a legitimate CAPTCHA check. However, has been observed to employ a different option. Of course, it will again instruct users to press 'Allow' but this time under the pretense that doing so will start the download of a desired file.

The goal of the page is to receive important browser permissions associated with the push notification feature. If successful, will be able to start generating revenue for its operators via an intrusive ad campaign. Users will notice a sizeable increase in the number of advertisements seen while browsing. More important is the fact that the advertisements may behave in similarly untrustworthy ways. They could promote phishing schemes, take users to fake giveaways or suspicious adult platforms, contain offers for PUPs or even open compromised sites.

URLs may call the following URLs:


Most Viewed