Our researchers discovered mesodefender.co[.]in while investigating dubious websites. Upon examination, we determined that this rogue page endorses browser notification spam and redirects users to other (likely deceptive/malicious) sites. Most visitors access mesodefender.co[.]in and analogous web
After investigating "Mailbox Capacity Reduced", we determined that it is a phishing email. This message claims that the recipient's mailbox capacity has been reduced. When an attempt to restore the account is made, the recipient is deceived into disclosing their email log-in credentials. T
After inspecting this "Reviewing Account To Improve Server Effectiveness And Security" email, we learned that it is spam. This message is presented as an effort by a mail service provider to reduce the number of inactive email accounts. This spam campaign aims to trick recipients into revealing th
While inspecting new malware submissions to VirusTotal, our research team discovered Crone ransomware. This malicious program is designed to encrypt data and demand payment for the decryption. On our testing system, Crone encrypted files and added a ".crone" extension to their filenames. To elabo
Warning is ransomware belonging to the GlobeImposter family. We discovered it during our routine inspection of malware samples uploaded to VirusTotal. Our analysis shows that Warning encrypts files and appends ".warning!_16" (its extension) to them. The ransomware also creates a ransom note ("HOW_
Searchthatweb.com is a fake search engine. Usually, websites of this kind cannot provide search results. We discovered this page while examining the SearchThatWeb browser hijacker. This extension was promoted as a tool for improving the browsing experience by expediting processes and eliminating d
We have examined obesfirewall.co[.]in and discovered that it uses clickbait to deceive visitors into agreeing to receive notifications. If this permission is granted, obesfirewall.co[.]in can send notifications containing fake warnings and similar content to lure users into unreliable web pages.
Search.live-history.com is a fake search engine, which we discovered while analyzing the LivingHistory browser hijacker. This software is endorsed as a quick-access tool for the user's browsing history. Browser hijackers modify browsers to produce redirects to their promoted websites, such as sear
We have analyzed Ginapc Quor Utils and found that this app has no real value to users and contains malicious components (such as the Legion Loader). Installing Ginapc Quor Utils can lead to computer infections and other issues. Thus, it is highly advisable not to install this app and remove it as
We have checked webplannerview.com and discovered that it is a fake search engine promoted through an unwanted extension, a browser hijacker called Web View. Webplannerview.com does not generate results, and the extension promoting it likely does not provide any real value to users. Thus, users sh