"KROHNE email virus" refers to a malware-spreading spam campaign. This term defines a mass-scale operation during which thousands of scam emails are sent. The messages distributed through this campaign are disguised as product purchase inquiries from the KROHNE company. This is a legitimate indust
Never install the ProtocolPort app on operating systems or browsers, since it generates advertisements, changes browser settings (to force users to visit certain sites), and collects data relating to internet browsing activities. In summary, this app functions as adware and a browser hijacker.
messages-email[.]com is a rogue website that shares similarities with netflowgroup.com, theactualnewz.com, newsfeedzscrollz.com, and thousands of others. Visitors to them are presented with dubious material and/or are redirected to other untrusted/malicious sites. People often visit messages-emai
Websites such as app-department[.]report commonly display pop-up windows and/or show messages warning visitors that their devices have viruses, and that they must click a link to download and install an application to remove them. I.e., app-department[.]report is one of many deceptive pages that
protectad[.]online is a deceptive web page designed to promote various scams. The schemes run on this site mainly target iPhone users (but might be accessed via other Apple devices). At the time of research, the website promoted a scam claiming that users' iPhones were exposed to malware and adw
Typically, scammers behind phishing emails attempt to trick recipients into installing malware or providing sensitive information. They send emails containing malicious attachments (or download links for malicious files) or links designed to open deceptive websites asking to enter/provide personal
Part of the Dharma ransomware family, Four is a malicious program. Systems infected with this malware experience data encryption and users receive ransom demands for decryption. When this ransomware encrypts, affected files are renamed following this pattern: original filename, unique ID assigned
tionscalen[.]top is one of many deceptive websites that use a scare tactic to trick users into believing they must download and install (sometimes even buy) a potentially unwanted application (PUA). One common tactic used by tionscalen[.]top and similar pages to trick unsuspecting into unnecess
HDSportsSearch is rogue software categorized as a browser hijacker. Following successful installation, it makes changes to browser settings to promote the hdsportssearch.com fake search engine. Furthermore, most browser hijackers have data tracking capabilities that are used to monitor users' bro
Woso is a browser hijacker that promotes the quickgosearch.com fake search engine. Typically, software within this classification promotes fake search engines by making modifications to browser settings, however, Woso does not always have this behavior (see below). Additionally, Woso collects bro