Our researchers discovered the Level ransomware while browsing new submissions to VirusTotal. This program is part of the Babuk ransomware family. Ransomware operates by encrypting data and demanding ransoms for the decryption. On our testing system, Level encrypted files and added a ".level" ext
Our team found that axishankylic[.]com attempts to deceive users into allowing it to show notifications. After gaining permission, it can push misleading alerts that lead to questionable and potentially malicious sites. Users should avoid axishankylic[.]co and close it immediately if they land on
During a routine investigation, we found the search-redirect.com fake search engine. Usually, websites of this kind cannot provide search results and redirect to legitimate Internet search sites. Search engines like search-redirect.com are commonly promoted (via redirects) by browser hijackers.
Our inspection has shown that stylethreadhub[.]com runs the "Norton Security - Your Pc Is Infected With 5 Viruses!" scam and requests permission to show notifications. Allowing websites like stylethreadhub[.]com to send notifications can expose users to more scams and other online threats. Thus, s
After reviewing this "You Have Exhausted All Of Your Available Email Storage" message, we determined that it is fake. This spam email recommends that the recipient submit a request for more mailbox storage space. This campaign's goal is to deceive recipients into disclosing their email account log
Our analysis revealed that troxalioutarbah[.]com is designed to trick users into enabling browser notifications. Once permission is granted, the site can deliver deceptive alerts and messages that direct users to untrustworthy or potentially harmful websites. Users should avoid visiting troxaliout
We have inspected the site and found that it runs a pop-up scam involving deceptive messages posing as Microsoft alerts. Usually, scammers behind such schemes aim to trick visitors into calling the provided fake technical support number. Falling for this scam can lead to monetary loss, computer in
We have inspected Jackpot and found that it is ransomware from the MedusaLocker family. We discovered this ransomware during an examination of malware samples submitted to VirusTotal. Once executed, Jackpot encrypts and renames files, changes the desktop wallpaper, and provides a ransom note ("REA
Our examination shows that this email contains a fake notification from an email service provider. It is designed to trick recipients into opening a phishing website and entering personal information. Falling for this scam can lead to account hijacking and other issues. This scam email inf
ApolloShadow is the name of a malicious program that has been observed in cyber espionage campaigns. It is a custom-built malware used by a threat actor dubbed "Secret Blizzard". This group is believed to be a part of the FSB (Federal Security Service of the Russian Federation). Secret Blizzard ha