Ransomware is malware that infects computers and restricts access to the infected computer (or files stored on it). It encrypts files and demands a payment in exchange for a decryption key or software. Usually, it renames encrypted files as well. Wallet ransomware renames files by adding the amag
penit[.]xyz is an untrustworthy website running various schemes. This page has been observed promoting versions of the "(3) Viruses have been detected on your iPhone" and "VPN Update" scams, mainly targeting iPhone users. Schemes of this type operate by presenting visitors with misleading or ou
viralnewsobserver[.]com is used to promote untrusted websites, however, it can also load dubious content. Usually, these rogue pages are opened through other untrusted web pages, deceptive advertisements, or potentially unwanted applications (PUAs). People often visit these bogus sites unintentio
The internet is full of untrusted, deceptive, and dangerous websites - maincaptchasource[.]com is a rogue web page that shares many similarities with vossulekuk.com, continue-site.site, messages-email.com, and countless others. These sites operate by presenting visitors with dubious content and re
StandBoost is a potentially unwanted application (PUA) that serves advertisements and promotes a fake search engine. It may also collect browsing data and other information. Therefore, this application functions as adware and a browser hijacker. It is classified as a PUA because most users down
VideoSearchApp is untrusted software categorized as a browser hijacker. It makes modifications to browser settings to promote the videosearchapp.com fake search engine. Additionally, VideoSearchApp collects browsing-related data. Due to the dubious tactics used to proliferate browser hijackers, th
FormatBoost is untrusted software that operates by running intrusive advertisement campaigns and promoting fake search engines by making changes to browser settings. Due to this, FormatBoost is classified as adware with browser hijacker traits. Since most users download/install this app inadver
First discovered by malware security researcher, Jakub Kroustek, 888 is a new variant of high-risk ransomware called Dharma. This malware is designed to encrypt most stored files. In doing so, 888 appends filenames with the ".888" extension plus the user's unique ID and developer's email address.
4KSportSearchs is a browser hijacker that promotes 4ksportsearchs.com, the address of a fake search engine. Generally, apps of this type hijack browsers by changing their settings. Furthermore, browser hijackers often collect details relating to users' browsing habits. People mostly download/inst
MrJeck is a malicious program within the ransomware classification. Systems infected with this malware have their data encrypted and users receive ransom demands for decryption (i.e., to unlock the files that have been rendered inaccessible). When MrJeck encrypts, files are renamed according to t