Snake ransomware was discovered by MalwareHunterTeam. Research shows that cyber criminals behind it target business networks. Snake is designed to encrypt files stored on all computers within a network using the AES-256 and RSA-2048 cryptographic algorithms. It also creates a ransom message withi
turbonews[.]biz is a rogue website similar to toobotnews.biz, 27news.biz, wwserch42.biz, gusimp.net and thousands of others. It presents visitors with dubious/harmful content and/or redirects them to other untrustworthy or malicious web pages. Access to turbonews[.]biz and other, similarly dubiou
vpnshieldplus4[.]com is one of many deceptive websites claiming that visitors' iPhones are infected with viruses. These sites display fake virus warnings/alerts and encourage users to download and install applications that supposedly remove detected viruses. You should avoid and ignore websites
theworldofcontents[.]info is a scam website promoting a fake Flash Player updater. There are several variants of this scam with differing design/appearance, although the purpose is much the same. The site claims that visitors' Flash Players might be outdated and advises them to update the softwa
budscanner[.]com redirects visitors to various other untrustworthy, potentially malicious web pages. Typically, people do not visit websites such as budscanner[.]com intentionally. In most cases, they arrive at them after clicking dubious, deceptive advertisements, through visiting rogue websites
Discovered by dnwls0719, Crypton (Aurora) ransomware originates from a family of ransomware programs called Aurora. Crypton (Aurora) is designed to prevent victims from accessing or using data by encryption. It also renames each encrypted file by appending the ".crypton" extension to the filename.
![Dear [ISP name] user, Congratulations! POP-UP Scam](/images/thumbnails/th-large-16715-dear-isp-name-user-congratulations-pop-up-scam.jpg)
"Dear [ISP name] user, Congratulations!" is a scam run on deceptive websites. This scheme is designed to trick users into believing that they have won a prize. To receive it, however, they need to provide personal information and pay certain fees. This scam is furthered through the use of visitors
yourmobistyle[.]com redirects visitors to untrustworthy websites. Typically, browsers open websites such as yourmobistyle[.]com when there are potentially unwanted applications (PUAs) installed on them (i.e., people do not visit these sites intentionally). Furthermore, yourmobistyle[.]com might b
Discovered by GrujaRS, Yarraq is ransomware-type malicious software which operates by encrypting data of infected systems and then demanding payment for decryption tools. When Yarraq encrypts, all files are appended with the ".yarraq" extension. For example, a file called "1.jpg" would appear as
Somik1 was discovered by S!Ri. Like most programs of this type, this ransomware encrypts and renames files. Somik1 renames them by appending the ".arnoldmichel2@tutanota.com" string to filenames. For example, "1.jpg" becomes "1.jpg.arnoldmichel2@tutanota.com", and so on. It also displays a ransom