Easyfondsonline.com Shows Fake Anti-Bot Check

Our researchers came across the rogue website easyfondsonline.com during their examination of untrustworthy sites. This site promotes unwanted browser notifications and redirects visitors to other, often suspicious or malicious, websites.

Most users land on pages like easyfondsonline.com through redirects initiated by websites that employ questionable advertising networks.

It's worth noting that the behavior of these rogue sites may be influenced by the visitor's IP address and geolocation. In simpler terms, the content users encounter on these webpages might be tailored based on their location.

Upon visiting easyfondsonline.com, we observed two different visual presentations, both of which utilized fake CAPTCHA tests to encourage users to enable notifications. One version featured a purple robot alongside a message instructing users to "Click 'Allow' if you are not a robot," while the other displayed an image of five robots with the same instructions.

If easyfondsonline.com is permitted to send browser notifications, it bombards users with advertisements promoting online scams, untrustworthy or harmful software, and even malware. Consequently, through websites like easyfondsonline.com, users could encounter system infections, serious privacy breaches, financial losses, and the risk of identity theft.

How Can Misleading Sites Abuse Push Notifications to Spam Ads?

Misleading websites can abuse push notifications to spam ads by taking advantage of the legitimate notification feature in web browsers. Here's how this abuse typically occurs:

• Deceptive Tactics: Misleading sites often use deceptive tactics to trick visitors into allowing push notifications. They may display fake error messages, misleading content, or enticing offers to encourage users to click the "Allow" button when prompted with a notification request.
• Notification Prompt: When a user visits a misleading site, it prompts them to subscribe to notifications. This is a legitimate feature in modern web browsers, designed to provide users with relevant and timely updates from websites they choose to follow.
• Permission Prompt: Once a user clicks "Allow," the website gains permission to send push notifications to the user's device, even when the user is not actively on the site. This is where the abuse begins.
• Continuous Spam: After obtaining permission, the misleading website starts sending a barrage of push notifications that often contain advertisements, links to dubious or malicious sites, and offers that may not be what they appear to be. These notifications can be highly disruptive and intrusive.
• Variations and Trickery: Misleading sites may use variations of their notifications to evade user blocks or browser security measures. They might also employ techniques to disguise the source of the notifications or employ social engineering tactics to keep users subscribed.
• Difficult to Unsubscribe: Unsubscribing from these notifications can be challenging. Users may struggle to find the option to disable notifications, as these sites often hide or make it obscure, or it may not work as expected.