BenefitSites is an app supposedly designed to improve the browsing experience, however, it is categorized as adware, a potentially unwanted application (PUA). Adware-type apps such as BenefitSites serve various advertisements and gather information relating to users' browsing habits. In most ca
Discovered by Raby, Dharma (.WHY) is a malicious program, which is part of the Crysis/Dharma ransomware family. Systems infected with this program have data encrypted and users receive ransom demands for decryption. When Dharma (.WHY) encrypts, compromised files are renamed following this pattern
Parrot is malicious software belonging to the Dcrtr ransomware family. It operates by encrypting data and demanding payment for decryption tools. When Parrot malware encrypts, all affected files are appended with the developer's email address and the ".parrot" extension. For example, a file such
Ragnar Locker is ransomware-type software designed not only to encrypt data but also to terminate installed programs (such as ConnectWise and Kaseya), which are commonly used by managed service providers and various Windows services. This ransomware renames encrypted files by appending an extensio
"Flash Player Update Download New Version" is a deceptive pop-up displayed by various scam websites. When sites running this scam are accessed, visitors are offered download/installation of fake Flash Player updates. Note that bogus updaters are commonly used to infiltrate systems with untrusted
Discovered by dnwls0719, Razor is part of the Garrantydecrypt ransomware family. Like many other programs of this type, Razor is designed to encrypt files (rendering them unusable/inaccessible), modify filenames, create ransom messages and change desktop wallpapers. Razor renames files by appendi
"Dear user, congratulations!" is one of many scam websites used to trick visitors into believing that they have won a prize, can receive a gift, and so on. In this particular case, visitors are informed that they have won a mobile telephone and can claim it by completing a survey. As with many ot
Getprizes is a group of scam websites. Their behavior is varied, yet these sites are primarily designed to display deceptive content and/or generate redirects to other scam pages. It has been noted that "Dear Chrome User, Congratulations!" and "Latest version of Adobe Flash Player" scams are co
PETRONAS is a spam campaign that cyber criminals spread to infect recipients' computers with LokiBot, a trojan-type malicious program. They send emails with attached archive files (RAR) that contain malicious executables. Cyber criminals behind the PETRONAS spam campaign attempt to trick people in
The mpgun[.]com website allows users to download videos from YouTube and convert them to MP3 and MP4 formats. In fact, it is illegal to download videos from YouTube. Furthermore, mpgun[.]com employs rogue advertising networks. In summary, this website displays dubious advertisements and opens unt