Fair belongs to the Makop ransomware family. It encrypts data, renames all encrypted files and creates a ransom message. Fair renames encrypted files by adding the victim's ID, fairexchange@qq.com email address, and appending the ".fair" extension to filenames. For example, "1.jpg" is renamed to
VideoSearchNet is a browser hijacker since it makes modifications to browsers to promote videosearchnet.com (a fake search engine). In addition, most browser hijackers have data tracking capabilities that are employed to monitor users' browsing habits. Due to the dubious methods used to prolifera
"National UK Lottery email scam" refers to a phishing spam campaign. The term "spam campaign" is used to define a mass-scale operation, during which thousands of deceptive emails are sent. The messages sent through this spam campaign supposedly concern an extremely valuable prize from the "Nation
Online Searcher is classified as a browser hijacker because it promotes a fake search engine (tailsearch.com) by modifying certain browser settings. Furthermore, this app collects browsing data. Online Searcher and similar apps are categorized as potentially unwanted applications (PUAs), since man
PayPal is an American company operating a worldwide online payments system. Cyber criminals commonly exploit names of well-known companies, products and services for malicious purposes. In this particular case, they use a fake download website for the PayPal desktop application to trick users into
GlobalMovieSearch is rogue software categorized as a browser hijacker. Following successful infiltration, it makes alterations to browser settings to promote globalmoviesearch.com (a fake search engine). Additionally, browser hijackers can track and collect browsing-related information. Furthermo
WebSearchConverter is one of many browser hijackers that promote fake search engines by modifying certain browser settings. This particular app promotes the websearchconverter.com address. Additionally, WebSearchConverter can read data relating to users' browsing activities. In most cases, users
"iPhone 12 email virus" refers to a malware-spreading spam email campaign. The term "spam campaign" is used to define a mass-scale operation, during which thousands of scam emails are sent. The deceptive messages distributed through this spam campaign concern a fake order of an iPhone 12, which ha
XinFrams prevents victims from accessing the operating system (restricts login and file access) by locking the screen. It displays a ransom message that contains instructions about how to pay a ransom to the developers plus various other details. Note that XinFrams is non-encrypting malware - it r
Apps such as ClickMovieSearch promote fake search engines by modifying certain browser settings. This particular apps assigns the settings to clickmoviesearch.com. ClickMovieSearch also promotes a fake search engine and gathers details relating to users' browsing habits. Typically, users download