Ransomware is a type of malware that encrypts files and generates a ransom note (or multiple ransom notes). It blocks access to data unless a ransom is paid. Gpay encrypts and renames files, it appends the ".gpay" extension to their filenames (e.g., it renames a file named "1.jpg" to "1.jpg.gpay",
"Air Sea Land email virus" refers to a malware-proliferating spam campaign. The term "spam campaign" describes a mass-scale operation during which deceptive/scam emails are sent by the thousand. The fake "Air Sea Land" letters supposedly concern order payments. This spam mail aims to spread malic
It is known that SkinnyBoy was used in targeted attacks (in spear phishing campaigns targeting military and government institutions). At the current moment this malware is delivered using emails that contain malicious Microsoft Word document. SkinnyBoy is designed to collect information about the
"New app(s) have access to your Microsoft Account email scam" refers to a spam campaign - a large-scale operation during which thousands of deceptive emails are sent. The letters distributed through this campaign - claim that new applications have connected to recipients' Microsoft accounts. The
Typically, scammers behind sextortion scam emails claim to have compromising images or videos of the recipient and demand payment for not releasing those images or videos. In most cases, scammers claim to have used recipient's webcam to obtain compromising material. The main purpose of such scams
ZLO is the name of a screen-locking ransomware. It operates by locking operating systems with a full-screen ransom-demanding message. In other words, victims are unable to use their devices until they pay the ransom. However, at the time of research, the ZLO screenlocker's message could be remove
Ransomware attack victims cannot access encrypted files unless they decrypt those files with a tool that the attackers encourage to purchase from them. Usually, malware of this type encrypts and renames files, and generates a ransom note. Pahd modifies filenames by appending the ".pahd" extension
MapperState is a rogue application categorized as adware. Additionally, this piece of software has browser hijacker traits. It operates by running intrusive advertisement campaigns and promoting fake search engines (through modifications to browser settings). MapperState likely has data trackin
Ransomware is a type of malware that encrypts files stored on a computer to prevent victims from accessing them and generates a ransom demanding message. Cryptoncrypt encrypts and renames files - it appends victim's ID, cryptoncrypt@tuta.io email address and the ".cnc" extension to their filenames
PARTYDOG is the name of a malicious program belonging to the Dharma ransomware group. Systems infected with this malware experience data encryption and receive ransom demands for the decryption. In other words, PARTYDOG renders victims' files inaccessible/unusable, and they are asked to pay - to r