NailaoLocker is a ransomware-type program written in the C++ programming language. It encrypts victims' files to demand payment for the decryption. On our test machine, the malware encrypted files and appended their names with a ".locked" extension. For example, a file initially titled "1.jpg" be
We have inspected windtrackr[.]site and concluded that it is one of the many web pages designed to obtain permission to show notifications through clickbait (a deceptive technique). Moreover, when users permit sites like windtrackr[.]site to show notifications, they often receive fake warnings, al
Cowboy Stealer is information-stealing malware written in the Go programming language. Cybercriminals typically use this type of malware to harvest credentials, financial data, and other valuable information. If detected on the system, Cowboy Stealer should be eliminated as soon as possible.
Our research team found the unveriumenflue[.]com rogue page during a routine investigation of untrustworthy sites. After inspecting this webpage, we learned that it promotes browser notification spam and generates redirects to other (likely dubious/dangerous) websites. Most visitors access unveri
Our research team discovered the tripleads[.]top rogue page while investigating dubious websites. Upon examination, we determined that it promotes browser notification spam and redirects users to other (likely unreliable/harmful) sites. Most visitors to tripleads[.]top and analogous webpages acce
During our inspection of xprotocols[.]xyz, we found that this site is deceptive: it uses clickbait to lure visitors into allowing it to show notifications. Once permission is granted, xprotocols[.]xyz can display fake warnings and other bogus notifications. Therefore, users should avoid xprotocols
We have reviewed the email and found that it is a phishing attempt. Scammers use this fraudulent email to steal personal details. They disguised it as a notification regarding an email account verification to lure users into disclosing their login credentials on a fake website. This email should b
Nationalcustomersurvey[.]com is a rogue webpage endorsing dubious content and browser notification spam. It can also redirect visitors to different (likely unreliable/malicious) websites. Our researchers discovered this page while investigating sites that utilize rogue advertising networks. It is
Our researchers discovered the iopoq[.]click rogue page while browsing dubious websites. Its goal is to promote browser notification spam and, at the time of research, the webpage did so by relying on a video-themed lure. Additionally, it can redirect users elsewhere (likely unreliable/dangerous s
Our researchers discovered the ETHAN ransomware while investigating file submissions to the VirusTotal website. This program is part of the MedusaLocker ransomware family. We executed a sample of this malware on our testing system and learned that the files it encrypts are renamed as well. Origin