SUPERLOCK is a ransomware-type virus designed to encrypt files and demand ransoms for the decryption. This program changes the names of locked files by appending them with a ".victim's_ID.superlock" extension. To elaborate, a file initially titled "1.jpg" could appear as "1.jpg.08499B3C3DB52104.su
Our examination of the email has shown that it is a scam email imitating a notification from DHL. Scammers crafted this fraudulent email to lure recipients into revealing personal information on a fake web page. Such emails are classified as phishing emails. Users should be able to recognize such
Upon examining the website (pudgypengiun[.]xyz), we discovered it to be a fraudulent platform designed to closely resemble pudgypenguins.com. This fake site is created by scammers with the intent to steal cryptocurrency from unsuspecting users. Users should always examine crypto platforms before t
After examining this "Pay Advice" email, we determined that it is spam. It is presented as a notification concerning the recipient's payroll. It must be emphasized that this fake message is not associated with any legitimate service providers. The purpose of this spam mail is to deceive recipients
Our team has examined the website (base-fastbitco[.]top) and found that it is a scam site imitating the real Coinbase page (coinbase.com). The purpose of this scam site is to steal money and potentially personal information from unsuspecting individuals. This and similar web pages should be avoide
We have reviewed this website and found that it runs a pop-up scam. On this site, a deceptive message is presented to trick visitors into taking certain actions. Users should not trust such pages and close them if encountered to avoid security and privacy risks. Engaging with such sites can lead t
Online Manuals Discovery is a browser extension that is promoted as a tool for finding manuals. However, during our inspection, we noticed that it generates advertisements. Apps (and extensions) designed to display ads are classified as adware. Users should avoid adding adware to web browsers or i
Adver is ransomware that encrypts victims' files and appends the ".adver" extension to filenames. The malware provides contact and other information in its "RECOVERY INFORMATION.txt" file (ransom note). An example of how files encrypted by Adver are renamed is "1.jpg" being changed to "1.jpg.adver
After inspecting this "cPanel - Service Update Notification" email, we determined that it is spam. The message urges the recipient to update their email account to avoid service interruptions. It must be emphasized that this alert is fake, and it is in no way associated with the actual cPanel, L.
GURAM is a ransomware-type program discovered by our research team during a routine inspection of new submissions to the VirusTotal website. Ransomware operates by encrypting files in order to demand payment for the decryption. After we executed a sample of GURAM on our test machine, this malware