Our researchers determined that "Notification Of DHL Shipment" is a spam email. It is not associated with DHL - the logistics and delivery company; cyber criminals merely use the name to trick recipients into falling for the phishing scam. This fake notification targets email account log-in creden
During a routine inspection of new submissions to VirusTotal, our research team found another malicious program belonging to the Djvu ransomware family. It is called Ccps, and it is designed to encrypt data and demand payment for the decryption. On our test machine, this ransomware encrypted file
We have found out about the pushnott[.]com website after visiting sites (illegal movie streaming, torrent sites) that use shady advertising networks. Our team has analyzed pushnott[.]com and learned that it attempts to get permission to show notifications and redirects to similar pages. Pu
TikTok Finder is a browser extension promising easy access to and search options on TikTok - the video-focused social media platform. Our researchers found this piece of software while inspecting dubious sites promoted by browser notification spam. After analyzing TikTok Finder, we determined it t
We have discovered disturbmachine[.]xyz while examining websites that use rogue advertising networks (such as torrent sites, illegal movie streaming pages). After analyzing disturbmachine[.]xyz, we have concluded that it displays deceptive content to promote legitimate software and asks for permis
Discovered by our researchers while inspecting sites that use rogue advertising networks, Film Links Now | Default Search is a rogue browser extension. We determined that this piece of software is a browser hijacker. It modifies browser settings and promotes the filmlinksnow.com fake search engine
We have found the Adskip Love application while visiting shady websites promoted through sites that use rogue advertising networks. Our team has tested this app and learned that it generates advertisements. Thus, Adskip Love is an advertising-supported app (adware). Ironically, its developers desc
Rdtwrmogzav is a ransomware-type program that our researchers found while looking through new malware submissions on VirusTotal. Additionally, we determined that this program is part of the Snatch ransomware family. After being launched on our test system, Rdtwrmogzav encrypted files and appended
During a routine inspection of untrustworthy websites, our researchers discovered the investmeny[.]org site. This webpage promotes spam browser notifications and can redirect visitors to various unreliable/harmful sites. Most visitors to investmeny[.]org and similar pages enter them via others tha
We have discovered the Sojusz ransomware while checking various forums. Apparently, cybercriminals have already performed successful attacks since users on the Internet claim that their files have been encrypted by the Sojusz ransomware. We have found that Sojusz is part of the Makop ransomware fa