Wholewowblog[.]com is a deceptive website that has been discovered by our team while testing sites that use questionable advertising networks. We examined wholewowblog[.]com and found that it uses a clickbait technique to trick visitors into agreeing to receive notifications that promote other unt
Discovered by Michael Gillespie, White Rabbit is a ransomware-type program designed to encrypt data and demand payment for the decryption. When unleashed upon our test machine, this malicious program encrypted and appended targeted files with a ".scrypt" extension, as well as created correspondin
Our team has discovered this iPhone 12 Mini giveaway scam website while visiting other shady websites (websites that use questionable advertising networks) and inspecting notifications from untrustworthy pages. Scammers behind this page attempt to trick unsuspecting visitors into providing persona
Our team has discovered aucfuu[.]com while visiting websites (torrent, illegal movie streaming, and similar pages) that use questionable advertising networks. At the time of the research, aucfuu[.]com used a clickbait technique to get permission to show notifications and redirected to a shady webs
While analyzing questionable sites, our research team discovered the video***.live websites. This webpage group includes many domains, e.g., videosol[.]space, videobtc[.]space, videofun[.]space, videoeth[.]space, videofan[.]space, videofon[.]space, videofen[.]space, etc. These sites are designed
We have discovered the one dark application while inspecting browser notifications delivered by various questionable websites. Once we installed one dark, it hijacked a web browser by changing its settings. We have learned that one dark is a browser hijacker designed to promote yesjis.com - a fake
Our researchers found NetworkStructured when looking through new submissions on VirusTotal. After analyzing this sample, we came to the conclusion that NetworkStructured is an adware belonging to the AdLoad malware family. We have studied many adware-type applications from this malware group, a
After receiving this email, our team has analyzed it and determined that this is a phishing email used to retrieve email account login credentials. Scammers behind it attempt to trick recipients into believing that their account is outdated and needs to be updated through the provided website link
While analyzing the Cip ransomware sample, we found out that it belongs to the Dharma ransomware family. We also noticed that it encrypts files and appends the victim's ID, ciphercrypt@tuta.io] email address and the ".cip" extension to filenames. For example, it renames "1.jpg" to "1.jpg.cip", "do
We detected Clipboard Sync Beta when researching scam websites. This adware-type browser extension was promoted by the "Install the extension for Chrome to protect your privacy" scam. This piece of software promises to sync clipboard data between two desktop devices; instead, it runs intrusive ad