RIP lmao (also known as JCrypt) ransomware renames encrypted files by appending the ".jcrypt" extension to filenames. For example, "1.jpg" is renamed to "1.jpg.jcrypt", "2.jpg" to "2.jpg.jcrypt", and so on. Depending on the variant, extension may also differ (e.g., ".l33ch", ".omero" extensions).
FlexibleProtocol is an adware-type application with browser hijacker characteristics. It operates by delivering intrusive advertisement campaigns and making changes to browser settings to promote fake search engines. In addition, this app has data tracking capabilities, which are used to collect
sbecome[.]online is an untrusted site, sharing many similarities with emindeed.top, sionremai.fun, titionasses.fun and thousands of others. Pages of this type are designed to present visitors with dubious material and/or redirect them to other rogue and even malicious websites. Users rarely acces
SearchGuard — Smart Search changes specific browser settings to searchwarden.com, the address of a fake search engine. It is likely that this app also collects browsing data and other information. Browser hijackers are often downloaded and installed by users inadvertently and, therefore, SearchGua
"Banco Montepio email scam" refers to a spam campaign, designed to extract recipients' banking credentials (i.e. usernames and PIN codes / passwords). The term "spam campaign" is used to define a mass-scale operation, during which thousands of deceptive emails are sent. The messages distributed t
emindeed[.]top is similar to sionremai[.]fun, thehugefeed[.]com, titionasses[.]fun and many other pages. Typically, users do not visit these sites intentionally - they are opened by browsers that have potentially unwanted applications (PUAs) installed on them. They are also promoted via other dubi
"Email Security Alert" refers to the subjects/titles of deceptive emails. These messages claim that recipients must update their email account security. The link users are to click to update their accounts redirects to a phishing website designed to steal email account passwords, thereby gaining a
Commonly, scammers use bogus emails to trick recipients into providing personal, sensitive information such as credit card details, login credentials for various accounts, etc. They often attempt to do so by disguising their emails as official, important messages from legitimate companies and orga
PyMICROPSIA is an information-stealing Trojan built with the Python programming language and related to the MICROPSIA malware family. It can be used to collect data and remotely control infected machines via a Command and Control (C2) server. PyMICROPSIA is powerful malware, which should be unins
Easy Searching App is a browser hijacker designed to promote keysearchs.com (a bogus search engine). Typically, software of this type operates by making alterations to browser settings to promote fake search engines, however, Easy Searching App does not necessarily operate in this way (see below).