HiveWare is ransomware that we discovered during our routine inspection of samples uploaded to VirusTotal. Our research shows that HiveWare encrypts files and appends the ".HIVELOCKED" extension to them. For example, it renames "1.jpg" to "1.jpg.HIVELOCKED", "2.png" to "2.png.HIVELOCKED", etc. It
We have reviewed the site and found that it uses a deceptive technique to trick visitors into granting it permission to show notifications. If allowed, ncelewasgildeda[.]net can bombard with misleading notifications containing links to other untrustworthy websites. Users should avoid visiting ncel
Mytmciinc[.]com is a deceptive website that tries to convince visitors to enable its browser notifications using a clickbait technique. If permission is granted, it begins sending intrusive alerts designed to mislead users and open other websites of this kind. For this reason, mytmciinc[.]com is c
Velonexa[.]com is a rogue page discovered by our researchers during a routine inspection of untrustworthy websites. After examining this webpage, we learned that it promotes spam browser notifications and redirects visitors to different (likely unreliable/harmful) sites. Most users access pages li
Our researchers found the news-cakuge[.]cc rogue webpage while browsing suspicious sites. It aims to deceive users into permitting browser notification delivery. This page can also generate redirects to different (likely unreliable/malicious) websites. Most visitors to news-cakuge[.]cc and similar
Our research team found spanchaintech[.]com while investigating untrustworthy sites. After inspecting this rogue webpage, we determined that it promotes browser notification spam and produces redirects to other (likely dubious/harmful) websites. Spanchaintech[.]com and pages akin to it are most co
News-bexezi[.]cc is a rogue webpage discovered by our research team during a routine inspection of suspicious sites. Upon examination, we determined that this page endorses browser notification spam and redirects users to different (likely suspicious/dangerous) websites. The majority of visitors
While investigating suspicious websites, our researchers discovered the SafeDomain Guardian PUA (Potentially Unwanted Application). This app is advertised as a tool that can check site domains for threats and provide comprehensive safety analyses. Software within this classification usually has ha
Our researchers discovered the PrivacyBrowse browser while investigating untrustworthy websites. This piece of software is a Potentially Unwanted Application (PUA). Programs within this category often possess undesirable or outright harmful capabilities. PUAs may have "official" download sources,
Upon examining the "American Express - Disputed Transaction" email, we learned that it is fake. This message informs the recipient of an automatically disputed charge to their credit account. It must be stressed that the claims made by this email are false, and this mail is not associated with th