News Archives - Adware Guru

Illustration of a sponsored search result leading to a fake Node.js installer, OXLOADER, and CastleStealer

0

Fake Node.js Ads Deliver OXLOADER and CastleStealer

Elastic Security Labs published a June 19, 2026 report on OXLOADER, a Windows loader delivered through malicious Google Ads that…

Illustration of a compromised WordPress site leading to a fake browser update prompt and Operation Endgame disruption

Daniel Zimmermann4 days ago

0

SocGholish Fake Browser Update Network Disrupted in Operation Endgame

International law enforcement and private-sector partners announced on June 18, 2026 that they disrupted part of the SocGholish malware network,…

Illustration of Chrome extensions routing search queries through a monetization broker

Daniel Zimmermann5 days ago

0

SearchJack Chrome Extensions Hijack Searches for Affiliate Revenue

MalExt Sentry reported a Chrome extension campaign called SearchJack that quietly changes users’ default search engine and sends searches through…

Illustration of a fake World Cup streaming page leading to pop-ups, fake updates, and scam ads

Daniel Zimmermann6 days ago

0

Fake World Cup Streaming Sites Push Pop-ups and Scam Ads

Malwarebytes reported on June 16, 2026 that dozens of fake World Cup streaming sites are using football as bait for…

SniperDz browser notification scam funnel with Allow prompt and premium SMS warnings

Daniel Zimmermann1 week ago

0

SniperDz Scams Abuse Browser Notifications and Back Button Traps

Group-IB has detailed a SniperDz scam ecosystem that turns social media traffic into browser notification subscriptions, premium SMS or call…

Illustration of a short social video leading to a PowerShell command and Vidar stealer warning

Daniel Zimmermann2 weeks ago

0

Fake Free Software Videos Push Vidar Through PowerShell Commands

ReversingLabs reported on June 9, 2026 that attackers are using short tutorial videos on TikTok and Instagram Reels to push…

Chrome wallpaper extension adware redirects and storage wipe warning

Daniel Zimmermann2 weeks ago

0

Chrome Wallpaper Extensions Used for Adware Redirects and Storage Wipes

Palo Alto Networks Unit 42 has reported a Chrome Web Store adware campaign built around live wallpaper and new-tab extensions.…

Illustration of a macOS malvertising chain from sponsored search ad to fake app download and FlutterShell payload

Daniel Zimmermann3 weeks ago

0

FlutterBridge Malvertising Pushes Mac Adware With Backdoor Features

Security researchers at Palo Alto Networks Unit 42 have detailed a macOS malvertising campaign called Operation FlutterBridge that used Google…

Fake download page routing a clicked Download button through a hidden TDS to stealer, clipper, and unwanted app payloads

Daniel Zimmermann3 weeks ago

0

Fake Download Sites Hijack Clicks Through Hidden TDS Redirects

Check Point Research has reported a large fake-download ecosystem that impersonates open-source and freeware projects, then turns a normal-looking download…

DriveSurge campaign routing visitors from trusted sites to fake browser updates and ClickFix lures

Daniel Zimmermann3 weeks ago

0

DriveSurge Hijacks Sites for Fake Browser Updates and ClickFix Lures

Security researchers have named a new large-scale drive-by malware operation DriveSurge, after finding that compromised legitimate websites are being used…