Cavallososo is a piece of malicious software belonging to the ZEPPELIN ransomware family. Our research team found a sample of this ransomware while inspecting new submissions to VirusTotal. Once launched onto our test machine, Cavallososo encrypted files and appended their filenames with a ".Cava
We have discovered the TopMoviesLinks Default Search app while doing our periodical research on shady advertising networks and deceptive pop-ups used to trick users into installing this extension. After testing the app, we have learned that it alters the settings of a browser - it hijacks a browse
Our team has discovered the Rtgf ransomware while analyzing malware samples submitted for VirusTotal. Rtgf belongs to the Djvu ransomware family. It encrypts files and appends the ".rtgf" as their new extension. Also, it creates the "_readme.txt" file to provide victims with contact and payment in
Pushnotstudio[.]com is a rogue site, which our research team discovered while inspecting shady pages. It is designed to push spam browser notifications and cause redirects to other unreliable/malicious websites. Visitors to pushnotstudio[.]com and similar sites primarily access them via redirects
BetterSearch Default Search is a browser extension that we found while inspecting untrustworthy websites. Our researchers classified this piece of software as a browser hijacker. BetterSearch Default Search operates by making changes to browser settings and promotes the better-search.xyz fake sear
Page Darker is a browser extension promising to create a dark mode for simple websites. After analyzing this piece of software, we have determined that it operates as adware. Page Darker delivers intrusive ad campaigns and spies on users' browsing activity. When Page Darker was installed o
Webpushtech[.]com is a rogue site promoting browser notification spam. Additionally, it is capable of redirecting visitors to other untrustworthy and malicious pages. Our research team discovered this website while researching sites using rogue advertising networks. Most users access webpushtech[
Pubavideo[.]ru is a website that uses clickbait techniques to trick unsuspecting visitors into permitting it to show notifications. Additionally, pubavideo[.]ru can redirect visitors to other websites. We have discovered this site during the analysis of various illegal streaming, torrent, and simi
We have discovered the Quick pro application while visiting deceptive websites. One of those pages claimed that it is required to add an extension to Chrome to proceed. Another one recommended adding an extension to the browser for an unspecified reason. We have examined Quick pro and found that i
"CoinMarketCap Giveaway" is a scam our researchers found while inspecting rogue websites. This fake giveaway promises to double users' contributions in either Bitcoin (BTC) or Ethereum (ETH) cryptocurrency. In other words, this scam is designed to trick users into transferring cryptocurrency to it