Serpent is the name of a backdoor malware that we have discovered while examining a malicious MS Office document used in a malspam campaign. It is known that Serpent can be used to execute commands on the infected device, allowing cybercriminals to download other malware and gain complete access t
Richsurvey[.]site is a rogue webpage that loads dubious content, pushes browser notification spam, and redirects visitors to other (likely untrustworthy or malicious) pages. Our research team discovered this page during a routine inspection of sites that use rogue advertising networks. However, w
Our research team discovered the yourdatasecurityservice[.]com rogue website while inspecting untrustworthy sites. It loads deceptive content, promotes browser notification spam, and redirects visitors to other (likely dubious/malicious) pages. Most users access sites like yourdatasecurityservice[
During a routine inspection of dubious download webpages, our researchers found the moon darker browser extension. It is endorsed as a dark mode tool. After analyzing this piece of software, we determined that it is a browser hijacker promoting the getsins.com fake search engine. Browser h
AdBlock Max - remove invasive ads is the name of an application/browser extension that we have discovered on a shady website. It is described as an app that removes advertisements and trackers on popular websites and skips YouTube ads. Our team has tested the app and noticed that it operates adwar
Check-the-weather[.]com is an untrustworthy website designed to trick users into agreeing to receive its notifications and redirect visitors to other shady pages. Our team has discovered this page while examining other dubious sites that use rogue advertising networks. Typically, pages like check-
Our team has discovered the QuickCouponSearch application on a shady website. After testing the app, it was concluded that QuickCouponSearch is a browser hijacker. This app hijacks web browsers by changing their settings. The purpose of QuickCouponSearch is to promote quickcouponsearch.com - a fak
Recently, it has been popular among scammers to send coronavirus-related emails to trick recipients into transferring money, providing sensitive information, and other purposes. We have examined this email and concluded that it is just another pandemic-related email scam. Scammers behind it attemp
News-govuhu[.]cc is a rogue site, which our researchers discovered while inspecting dubious webpages. It is designed to load questionable content, push browser notification spam, and redirect visitors to other (likely untrustworthy or malicious) websites. News-govuhu[.]cc and similar pages are ra
Kabil is ransomware based on another ransomware variant called Chaos. It encrypts files and appends ".kabil" extension to filenames. Also, Kabil changes the desktop wallpaper and creates the "read_it.txt" file (both containing ransom notes). Our malware researchers have discovered this ransomware