MalwareTips
Security Review

Is pushwoosh.com legit or a scam?

Our verdict:Suspicious· 55/100

A legitimate but controversial SaaS platform with documented ties to historical malware and deceptive corporate transparency practices.

Top reasons
Documented historical ties to the author of the Pincer Trojan malware.Past deceptive practices regarding the company's true country of origin and headquarters.Removal from US government and military applications due to security concerns.
pushwoosh.comScanned 10h ago
Post Facebook
0
Trust score
SUSPICIOUS
Heuristics 78·MT 45
Category tags
tech-support-scam85% MT confidence
Warning signals (1)
Redirects to another domain

These checks passed — but they don't clear the site. A clean antivirus result, valid SSL, and a calm server only mean it isn't hosting malware; they say nothing about whether the business is real. This verdict is based on the site's conduct and content, not a malware detection.

View density

Analysis Summary

Threat Intelligence
0/92
All engines report clean
Domain Age
15 years old
Registered May 2, 2011
MT Intelligence
Suspicious
Moderate likelihood · 85% confidence
SUSPICIOUS

Tech-support scare page — do not call the number

A legitimate but controversial SaaS platform with documented ties to historical malware and deceptive corporate transparency practices. Some signals suggest this is a fake support / scare page. Don't call any displayed number and don't install any "support" software.

Website Preview

Screenshot of pushwoosh.com
LIVE RENDER
pushwoosh.com
1Professional SaaS landing page for Pushwoosh with clear branding and navigation

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site. See full visual analysis →

Visual Screenshot Analysis

We capture a fresh screenshot of the live page and ask a vision model to look for scam visual patterns — fake trust badges, countdown timers, overlay pop-ups, and visual clones of legitimate brands.

0
/ 100
No visual red flags

No scam visual patterns detected

The screenshot shows a professionally designed, fully-rendered legitimate business website for a marketing platform with no visible scam indicators.

Visual risk0/100

What our vision model saw

6 signals

Professional SaaS landing page for Pushwoosh with clear branding and navigation

Standard cookie consent banner present in the lower-left corner

Functional navigation menu including Products, Pricing, and Resources

Call-to-action buttons for 'Contact Sales' and 'Start For Free' are professionally styled

High-quality custom graphics depicting marketing automation workflows

No signs of urgency tactics, fake trust badges, or brand impersonation

MT Intelligence

Advanced threat intelligence
MT Security Analyst
Moderate scam likelihoodengineMT · Guardiantrust45/100
MT AgentLive web researchVisual inspection
0%
Confidence
The domain has been active for over 15 years and operates a functional software-as-a-service business with many positive user reviews. However, our analysis highlights critical security concerns, including a developer's past admission to creating the Pincer Trojan malware. Major news investigations also revealed the company misrepresented its Russian origins as being US-based, leading to its removal from several government applications. While the site itself is not a traditional scam, these transparency and security issues represent a significant risk for data-sensitive integrations. We have adjusted the trust score to reflect these documented background risks despite the professional appearance of the site.
Full dossier
Analysis complete

Page Content

The website is a professionally designed landing page for a customer engagement platform, offering push notifications, in-app messaging, and automation tools. It features clear navigation, pricing tiers, and developer documentation without typical scam indicators like high-pressure timers or fake trust badges.

Infrastructure

The site is hosted on a high-reputation IP with no history of abuse reports. It utilizes a valid SSL certificate from Sectigo and integrates standard third-party services like Google Tag Manager and LinkedIn for marketing and analytics.

Domain History

Registered over 5,500 days ago, the domain has a long operational history. While the business is currently registered as a Delaware C-Corp, historical data shows substantial past operations in Russia and ties to the firm Arello-Mobile, which the company has worked to distance itself from since 2022.

Web Reputation

The platform maintains a mixed reputation; while it holds positive ratings on software review aggregators for its features, it has been the subject of high-profile security warnings. Investigative reports from Reuters and Krebs on Security have flagged the service for deceptive corporate identity and potential security vulnerabilities in its SDK.
Risk Factors
5
  • Documented historical ties to the author of the Pincer Trojan malware.
  • Past deceptive practices regarding the company's true country of origin and headquarters.
  • Removal from US government and military applications due to security concerns.
  • SDK flagged by some privacy tools for aggressive data fingerprinting.
  • Historical links to Russian operations while claiming to be a purely US-based entity.
Positive Signals
4
  • Domain has been active for over 15 years.
  • Positive user reviews on major software comparison platforms.
  • Professional website design with functional business features.
  • No current detections from our antivirus network or malware engines.
AI Recommendation
Exercise caution if integrating this service into applications handling sensitive data. Verify current data-residency and compliance certifications before deployment.
Next-gen fraud intelligence
Evidence-backedCross-checked

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for pushwoosh.com, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Domain age
15 yrs
Registered May 2011
Business registration
Active · USA
Site traces back to an actively registered business.
Clone check
Not a clone
No well-known site's layout or branding detected here.
Typosquat check
No look-alike match
The domain doesn't resemble any well-known brand's spelling.
Web mentions
3 scam reports · 3 positive
Key findings
7 headline facts from open-web research
  • Domain registered ~15 years ago (5536 days); operates as a legitimate push notification, in-app messaging, and customer engagement platform used by 80,000+ businesses.
  • In 2022, Reuters and Krebs on Security reported the company presented itself as US-based (Delaware C-Corp, DC/Maryland addresses) while having substantial Russian operations, employees in Novosibirsk, and prior Russian incorporation.
  • One longtime developer (Yuri Shmakov) admitted in 2013 to authoring the Pincer Android Trojan malware that intercepted SMS; company has ties to Arello-Mobile.
  • US Army and CDC removed Pushwoosh code from apps citing security concerns after the revelations; software found in various government and commercial apps.
  • Company responded that it is a Delaware entity never owned by a Russian company, terminated Russian outsourcing in Feb 2022, hosts data only in US/Germany, and is GDPR/ISO 27001/HIPAA compliant.
  • Reviews on Trustpilot (4/5 from 4 reviews), G2, Capterra, and FeaturedCustomers are generally positive regarding features, support, and ease of use; no widespread scam or fraud complaints found.
  • Listed in Exodus Privacy as a tracker for in-app messaging; some sandbox reports flag API endpoints for fingerprinting/phishing-like behavior in specific contexts, but no broad malware association with the service itself.
Scam reports (3)
Direct quotes from public scam databases, forums, and news.
  • Krebs on Securityopen

    "In 2013, one of its developers admitted to authoring the Pincer Trojan, malware designed to surreptitiously intercept and forward text messages from Android mobile devices."

  • Reutersopen

    "Thousands of smartphone applications in Apple and Google's online stores contain computer code developed by a technology company, Pushwoosh, that presents itself as based in the United States, but is actually Russian."

  • Krebs on Securityopen

    "Pushwoosh admitted the LinkedIn profiles were fake, but said they were created by a marketing firm to drum up business for the company."

Positive reviews (3)
Quotes indicating the site is legitimate.
  • Trustpilotopen

    "Pushwoosh is a powerful customer engagement platform trusted by over 80,000 businesses globally... 4-star rating? Check out what 4 people have written so far."

  • G2open

    "Users consistently praise the intuitive interface and strong customer support of Pushwoosh, which make it easy to design and manage campaigns."

  • Capterraopen

    "Based on 21 reviews... "Smooth Implementation and Responsive Support Team" "Nice tool for Push notification""

Business registration
Status: active · USA

Pushwoosh Inc. is a Delaware C-Corp. Company claims US incorporation and data centers in US/Germany; previously outsourced development to Novosibirsk, Russia (contract terminated 2022). Reuters reported Russian tax registration and operations in 2022.

Research summary
Narrative write-up from our AI analyst, grounded on the facts above
Our research into pushwoosh.com revealed significant security controversies reported by Reuters and Krebs on Security. These reports detailed how the company presented itself as US-based while maintaining deep roots in Russia. Furthermore, a key developer was linked to the creation of mobile malware in 2013. Despite these findings, the platform maintains 4-star ratings on independent review aggregators like an independent review aggregator and G2, where customers praise its technical capabilities.

Antivirus Engines

Clean pass · verified
Clean across 92 engines

We cross-check every URL against our antivirus network of 92 malware and blacklist engines. None of them flagged this URL in the last scan.

0Malicious0Suspicious60Harmless92Engines
Clean
Kaspersky
Clean
Bitdefender
Clean
Microsoft
Not in pass
ESET-NOD32
Not in pass
Avira
Not in pass
Sophos
Clean
Fortinet
Clean
Google Safebrowsing
Clean
Emsisoft
Clean

No engine detections. The URL passed every antivirus and blacklist engine we queried in this scan. Stay vigilant — AV coverage is only one signal among many.

Security Scans

Blacklist Check
Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Contact Verification

We fetched the page and looked for real-world contact details. Legitimate businesses almost always publish an email on their own domain, a phone number, and a postal address. Scam shops usually don't.

What We Found
No clear contact details on the page
Emails on site's domainNone
Phone numbersNone
Postal addressNot listed
Linked social profiles5
Signal Summary
Several contact red flags
  • No contact email found anywhere on the page.
  • No phone number listed on the page.
  • No postal address visible on the page.
  • Page requests browser push-notification permission — common malvertising vector.
  • Scam family match: Push-Notification Spam.
  • Scam family match: Tech-Support Scam.
  • Links to 5 social profiles.

Domain & Encryption

Domain History
Age15 years old
RegistrarPDR Ltd. d/b/a PublicDomainRegistry.com
RegisteredMay 2, 2011
ExpiresMay 2, 2029
Owner privacyVisible
Encryption Certificate
StatusValid
ProtocolTLSv1.3
IssuerSectigo Limited · Sectigo Public Server Authentication CA DV R36
ExpiresOct 3, 2026 (96d)
Self-signedNo
Hosting & Technology
HostingHetzner Online GmbH
Server locationFI
Web servernginx
PopularityTop 100k worldwide

Redirect Chain

Hops
1
Cross-domain
Yes
Lookalike
No
Punycode
No
  • 1301http://pushwoosh.com/
  • 2200https://www.pushwoosh.com/cross-domain

Server Reputation

Abuse Intelligence
Confidence score0%
Reports on file0
ISPHetzner Online GmbH
Usage typeData Center/Web Hosting/Transit

Scam-Type Likelihood

1 scam-type patterns detected
Scam-Type Likelihood

1 of 13 categories showed signals

We check every URL against 13 distinct scam categories so the verdict tells you not just how risky the page is, but what kind of risk it carries. Each meter pulls from page signals, web reports, our AI analyst, vision, and the scam-network cluster — not from raw AV labels.

Top match: Tech Support Scam
Tech Support Scam
High likelihood
90/100
  • Classic tech-support scare copy found (fake Microsoft/Apple alert, remote-access instructions).
  • Primary scraped category: fake tech-support page.

Possible tech-support scare page

Pages like this impersonate Microsoft, Apple, or your ISP to trick you into calling a number or granting remote access.

  • Treat pushwoosh.com as unverified

    Do not enter credentials or send money until you have independently verified the business.

  • Do not call the number and do not install any "support" tool

    Microsoft, Apple, Google, and legitimate ISPs never show a pop-up with a phone number. Installing AnyDesk, TeamViewer, or "Windows Support" at their request hands over your computer.

  • Close the page — end the browser process if needed

    If the page has locked your browser, press Ctrl+Shift+Esc (Windows) or Cmd+Option+Esc (Mac) and end the browser task. Reopen your browser with "Don't restore tabs".

  • If you already gave remote access or paid

    Disconnect the device from the internet. Run a full scan with Malwarebytes or a reputable AV. Change your passwords from a different device. Call your bank to dispute any payment and request a new card.

    Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
Not listedCheck ↗
VirusTotal
Not listedCheck ↗
AbuseIPDB
Not listedCheck ↗
Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Referenced Domains

Outbound domains this page links to or loads resources from. Each links to its own security scan.

fonts.googleapis.comfonts.gstatic.comgoogletagmanager.comgithub.comlinkedin.comx.comfacebook.comyoutube.com

Safety FAQ

Common questions about this site, answered directly from the scan data above — so the answers always reflect the latest verdict on this page.

  • Our automated security review marked pushwoosh.com as suspicious. Several warning signs were detected; it may still turn out legitimate, but you should verify it through independent channels before trusting it with money or credentials.
  • pushwoosh.com currently scores 55/100 on our trust scale. We found enough warning signals to recommend caution. Verify the site through independent channels before entering credentials or money.
  • Yes. pushwoosh.com presents a valid TLSv1.3 certificate issued by Sectigo Limited · Sectigo Public Server Authentication CA DV R36, expiring in 96 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.
  • pushwoosh.com is 15.2 years old, registered on 5/2/2011 through PDR Ltd. d/b/a PublicDomainRegistry.com. Scam domains are often freshly registered — a site under 6 months old warrants extra caution.
  • No. All 92 antivirus engines in our malware network report pushwoosh.com as clean.
  • No. pushwoosh.com is not currently listed on the major browser blocklist feeds that modern browsers use.
  • pushwoosh.com resolves to an IP operated by Hetzner Online GmbH in FI (usage type: Data Center/Web Hosting/Transit). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.
  • Yes. pushwoosh.com sits in the global top-100k on Cloudflare Radar, which means it has substantial real-world traffic. That does not automatically make it safe, but established brands almost always rank here and throwaway scam domains almost never do.

Final Verdict

0
Trust / 100
Final Verdict·pushwoosh.com
SUSPICIOUS

Pushwoosh is a long-standing mobile engagement platform that has faced significant security scrutiny due to its historical ties to malware development and deceptive corporate origins.

Exercise caution if integrating this service into applications handling sensitive data. Verify current data-residency and compliance certifications before deployment.

AV engines
92
MT passes
2
Net signals
0
Scan another URL
Security review completemalwaretips.com/url-scan
Recently scanned

Other Suspicious reports

Browse all reports
Suspicioustrust33
ssestimators.com
39m ago
Read the review
Suspicioustrust57
instantonlinebetting.com
41m ago
Read the review
Suspicioustrust60
kiwifarms.pa
43m ago
Read the review
Suspicioustrust44
mypigprincessapk.org
2h ago
Read the review
Suspicioustrust36
thebabyinyellow.org
2h ago
Read the review
Suspicioustrust42
kasilifestyle3d.org
2h ago
Read the review
Suspicioustrust48
idlebreakoutapk.com
3h ago
Read the review
Suspicioustrust45
haremhotelapk.com
3h ago
Read the review
Suspicioustrust56
kapitalrs.com
3h ago
Read the review
Suspicioustrust53
castleoftemptation.org
3h ago
Read the review
Suspicioustrust52
bussidindianlivery.com
3h ago
Read the review
Suspicioustrust50
fourelementstrainer.co
3h ago
Read the review
Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.