Point dark is the name of a rogue browser extension endorsed as a tool enabling dark mode for simple-design websites. Our researchers have determined that it is a browser hijacker. Additionally, we have observed it promoting the ytood.com fake search engine. Furthermore, point dark has data tracki
Our team has discovered the Ad 'n Popup-Blocker browser extension while visiting a deceptive website offering to download an application that is supposed to block ads and pop-ups. We have tested this app and found that it generates advertisements, which is the opposite of blocking ads. Thus, we ca
Our research team detected silverline-updates[.]com when researching rogue websites. This page operates by promoting browser notification spam, and it can redirect visitors to other dubious/malicious sites. Most visitors to websites like silverline-updates[.]com are redirected to them by pages tha
Discovered by our research team while inspecting untrustworthy websites, secureform[.]xyz is a rogue page that loads dubious material, promotes browser notification spam, and redirects visitors to various unreliable/malicious sites. Webpages like secureform[.]xyz are usually accessed via sites tha
While checking out new submissions on VirusTotal, our researchers found the PremiumLatest application. After analyzing it on our test system, we have determined that it is an advertising-supported software (adware). PremiumLatest also belongs to the AdLoad malware family. Adware may requ
During a routine inspection of new malware submissions on VirusTotal, our researchers found another malicious program belonging to the Djvu ransomware family. It is called Bbbe, and our test system it encrypted files and appended their names with a ".bbbe" extension. For example, a file initially
Bbbr is the name of ransomware that our team has discovered while inspecting the malware samples recently submitted to VirusTotal. We have found that Bbbr is part of the Djvu ransomware family. It is designed to encrypt files, append the ".bbbr" extension to filenames, and create the "_readme.txt"
SearchGamesOnline is a rogue browser extension. After analyzing it, our researchers determined that it is a browser hijacker that promotes the searchgamesonline.com fake search engine. Installed onto our test machine, SearchGamesOnline reassigned browsers' homepage, new tab/window, and def
We have discovered the Kings ransomware while checking VirusTotal for recently submitted malware samples. While analyzing the Kings ransomware, we have learned that it encrypts files and appends the ".kings" extension to filenames (for example, renames "1.jpg" to "1.jpg.kings", "2.jpg" to "2.jpg.k
PENTAGON is a Remote Access Trojan (RAT), malware designed to allow stealthy remote access/control over infected systems. Our researchers obtained PENTAGON's sample when its developers promoted and shared it on Reddit and Twitter. PENTAGON can enable close to user-level access over comprom