Threat Database Rogue Websites

Threat Scorecard

Ranking: 2,120
Threat Level: 20 % (Normal)
Infected Computers: 303
First Seen: January 16, 2024
Last Seen: February 9, 2024
OS(es) Affected: Windows is identified as a deceptive website known for delivering intrusive push notifications. Operating under the guise of legitimacy, the site employs tactics that mislead users into subscribing to its notifications. Users often find themselves directed to this fraudulent site either through dubious ads or as a result of installing Potentially Unwanted Programs (PUPs). Upon obtaining permission to send push notifications, initiates a deluge of deceptive messages, ranging from false alerts about virus infections to an overwhelming influx of unwanted advertisements.

The primary objective of is to generate revenue through user engagement, achieved by bombarding subscribers with a considerable volume of advertisements. The critical concern with these advertisements lies in their lack of scrutiny for quality or security, creating a scenario where clicking on them may lead to redirection to unsafe websites or the inadvertent installation of undesired software. As such, users are urged to exercise caution and avoid interacting with the deceptive practices employed by to safeguard their online experience and security.

Rogue Sites Like Use Various Deceptive Tactics

The success of tactics such as the push notification scheme hinges on the implementation of manipulative actions. Fraudsters employ a variety of strategies to trick users into granting permission for push notifications, exploiting both users' familiarity with common internet protocols and their innate curiosity. The following are some typical methods utilized in this deceptive process:

  • 'Click Allow to confirm you are not a robot': This method capitalizes on the widespread use of the legitimate 'CAPTCHA' system on many websites. Users are accustomed to solving puzzles or entering distorted text to confirm their human identity. Fraudsters mimic this process by instructing users to click 'Allow' under the guise of confirming they are not robots. This deceptive tactic appears familiar and seemingly harmless, leading many users to comply unknowingly.
  • 'Click Allow if you are 18+': Exploiting curiosity, this tactic implies that clicking "Allow" confirms the user is over 18 and will grant access to adult or restricted content. The allure of exclusive material often persuades users to click without fully grasping the potential consequences.

It is crucial to recognize that these prompts are deceptive. Clicking 'Allow' does not reveal any content, nor does it perform a legitimate CAPTCHA verification. The sole outcome is the activation of push notifications, which fraudsters exploit to inundate users with unwanted advertisements. Users are urged to exercise caution and awareness to notify the chances offalling victim to these misleading tactics and to protect their online experiences from deceptive schemes.

Pay Close Attention to the Telltale Signs of a Fake CAPTCHA Check

Identifying a fake CAPTCHA check requires vigilance and an understanding of certain telltale signs that distinguish legitimate verification processes from deceptive ones. Here are key indicators that can help users recognize a fake CAPTCHA check:

  • Unusual Request for Clicking 'Allow': Legitimate CAPTCHA checks typically involve solving puzzles or entering distorted text to verify human identity. If the prompt instructs users to click 'Allow' instead, especially without any visible CAPTCHA challenge, it is likely a fake.
  •  Mismatched or Poor Graphics Quality: Legitimate CAPTCHAs are usually well-designed and have clear, distortion-resistant graphics. Fake CAPTCHAs may exhibit poor graphics quality, inconsistencies, or unusual designs that deviate from the standard patterns seen on legitimate websites.
  •  Misspelled or Unprofessional Language: Fraudsters often use poorly written or misspelled instructions in fake CAPTCHAs. Legitimate websites maintain professional language in their security features, so any signs of grammatical errors or awkward phrasing should raise suspicion.
  •  Claims of Age Verification or Other Unrelated Checks: Fake CAPTCHAs may falsely claim to be verifying age or performing other unrelated checks. Legitimate CAPTCHAs focus solely on confirming human identity and do not involve age verification or similar unrelated processes.
  •  Pressure Tactics and Urgency: Fraudsters may employ urgency tactics, urging users to complete the fake CAPTCHA quickly or risk consequences. Legitimate websites typically provide users with a reasonable timeframe to complete CAPTCHA checks and do not create a sense of urgency.
  •  Unexpected Placement: Legitimate CAPTCHAs are typically integrated seamlessly into the user interface, often near form submissions or login areas. If a CAPTCHA appears unexpectedly in unrelated areas of a website, it may be a fake attempt to mislead users.
  •  Unusual or Excessive Permissions Requested: Legitimate CAPTCHAs only require users to confirm their identity. If the process requests additional permissions, such as allowing notifications or accessing personal information, it is likely a fake attempt to exploit users.

Remaining vigilant and scrutinizing CAPTCHA prompts for these tips can help users avoid falling victim to fake verification attempts and protect their online security. Video

Tip: Turn your sound ON and watch the video in Full Screen mode.

URLs may call the following URLs:


Most Viewed