Mhcadd belongs to the family of ransomware called Snatch. It is designed to encrypt victims' files, append its extension to their filenames, and generate a ransom message. Mhcadd appends the ".mhcadd" extension to filenames. For example, "1.jpg" is renamed to "1.jpg.mhcadd", "2.jpg" to "2.jpg.mhca
Connect is a variant of Bondy ransomware. This variant encrypts files, appends its extension to their filenames and creates a ransom message in all folders that contain encrypted files. Connect renames appends the ".Connect" extension to the filenames of encrypted files. For example, "1.jpg" is r
"Microsoft Security Alert" is a fake error similar to Suspicious Connection, Firewall Breach Detected, Your Computer Is In Blocked State, and many others. "Microsoft Security Alert" is displayed by a malicious website that users often visit inadvertently - they are redirected by various potentiall
Like most lottery scams, this one attempts to trick recipients into believing that they have won a large sum of money in a lottery. Commonly, scammers behind such scams attempt to extort money from unsuspecting recipients by asking them to pay processing fees or transfer charges. They usually dis
Company Network Was Riddled ransomware was discovered by S!Ri and is designed to encrypt and rename files, change the desktop wallpaper, and create a ransom message in a specific folder. Company Network Was Riddled changes the filenames of encrypted files by appending the ".encrypted" extension.
"Last Warning: Upgrade your email to avoid Shutting Down" is the subject of a deceptive/scam email. The message is supposedly from the recipient's email administration team. It claims that the user's mail accounts might need to be upgraded. This scam steals the email accounts by tricking recipient
"ERROR 268D3" is a fake error message delivered by various deceptive websites. Research shows that visitors usually arrive at these sites inadvertently - they are redirected by potentially unwanted applications (PUAs) or intrusive advertisements delivered by other rogue sites. Be aware that many
People do not often visit websites such as bestapps2020[.]com intentionally - browsers with potentially unwanted applications (PUAs) installed open these pages automatically. Other examples of similar web pages promoted by PUAs are mmk-news3[.]club, undertain[.]work and liveplayingnow[.]com. Note
Discovered by xiaopao, Peace is malware and part of the VoidCrypt ransomware family. It encrypts files, modifies their filenames and displays a ransom message. Peace ransomware renames files by adding the peace491@tuta.io email address, victim's ID and appending the ".Peace" extension to filenames
searchnets.xyz is the address of a bogus search engine. These fake search engines are usually promoted by rogue software called browser hijackers, which make modifications to browser settings. Browser hijackers have data tracking capabilities, which are employed to monitor users' browsing activi