David, thanks for the card! Today, I haven't seen any more hijackings on my iPhone 8 browsing TCF via HttpWatch Basic. With hesitation (I don't like what's blown away), I nuked mobile Safari's cache via the directions at Clear the history and cookies from Safari on your iPhone, iPad, or iPod touch. (I'm not sure if Safari's and HttpWatch's cache are shared but the cookies don't seem to be.) I only wish were ways to delete only the cache and maybe cookies but not history. Obviously, it sounds like more captures and investigation are needed. Will send them if I hit any. IIRC, I've never seen any hijackings/scam sites when browsing TCF using my work Mac running Firefox and my home PCs running Firefox for Win32 and Win64. At home, my home PCs and iOS devices are connected to an Asus RT-AC68U access point and have AiProtection – Commercial-Grade Security for Your Home Network turned on. The 1st log I sent to David (which may/may not have helped) was when I clicked on a post on TCF and my AP's AiProtection page came up saying it'd blocked access to normall.ss9696.com which it said was a scam site. The router doing (in some cases silent) blocking might be why I've not seen scam sites when browsing TCF at home. For those still seeing scam sites, if you have an Asus router w/AiProtection, perhaps turn it on? If your router has something similar, try turning it on?