Landingsecure[.]com is a deceptive website used to scare its visitors into downloading and installing a certain potentially unwanted application (PUA). Usually, websites like landingsecure[.]com display fake virus or error notifications, messages encouraging visitors to solve the problem (remov
IncognitoSearchly is a piece of rogue software categorized as a browser hijacker. It operates by promoting the incognitosearchly.com fake search engine by making changes to browser settings. Additionally, most browser hijackers spy on users' browsing activity; hence, it is highly likely that Inco
"Socar email virus" refers to a malware-spreading spam campaign - a large-scale operation during which thousands of deceptive emails are sent. The letters distributed through this campaign - are disguised as mail from SOCAR (State Oil Company of Azerbaijan Republic) - national oil and gas company
Ransomware is a form of malicious software that encrypts files (makes them inaccessible, unusable for victims) and displays, creates a ransom note. It is common that malware of this type modifies filenames. Uniwinnicrypt encrypts files and appends the ".uniwinnicrypt" as their file extension, for
Discovered by dnwls0719, Jormungand is a ransomware-type program. This malware operates by encrypting data and demanding payment for the decryption. In other words, the files affected by Jormungand are rendered inaccessible, and victims are asked to pay - to recover access to their data. During t
Most browser hijackers are designed to promote one or another fake search engine (its address) by making certain changes in a web browser's settings. SearchConverterApp is designed to promote the searchconverterapp.com address. It is noteworthy that browser hijackers tend to be designed to collec
Ransomware is a type of malicious software that cybercriminals monetize by leaving victims with no other option but to purchase a decryption tool from them. Malware of this type encrypts files and keeps them inaccessible unless they are decrypted with the right tool (program, key). RunExeMemory n
Ourbestnews[.]com is one of the many pages designed to promote untrustworthy websites and load questionable content. A couple of examples of other sites like ourbestnews[.]com are essingto[.]online, mycoolnewz[.]com, and download-app[.]net. Typically, users do not visit them intentionally. It is
"We have detected a potential risk of unsecured connection" is a scam promoted on various deceptive sites. This scheme targets Apple device users. It makes false claims about users' Internet connection not being secure - in order to trick them into downloading/installing and/or purchasing untru
ValidBoost is the name of a potentially unwanted application (PUA) that functions as adware and a browser hijacker. More precisely, this application serves advertisements and promotes the address of a certain fake search engine by modifying browser settings. It is likely that ValidBoost collect