Trksmm is a group of deceptive websites designed by scammers who seek to trick people into downloading and installing dubious apps. At the time of the research, one Trksmm web page was used to advertise the Smart Mac Booster application by encouraging visitors to remove a detected virus with it.
"Your Mac/iOS may be infected with 5 viruses!" is a pop-up window displayed by deceptive/scam websites. It employs scare tactics to encourage visitors into taking certain actions, which result in them being redirected to various untrustworthy and malicious sites. The pop-up alerts users of viru
Ransomware is software that encrypts files and prevents victims from accessing them unless they pay ransoms to cyber criminals. GodLock is one of these malicious programs and was discovered by GrujaRS. It changes the extension of each encrypted file to ".GodLock". For example, "1.jpg" becomes "1.
Discovered by GrujaRS, Forv is malicious software belonging to the Paradise ransomware family. The program is designed to encrypt data and demand ransom payments for decryption. During Forv encryption, all files are appended with the "_forv_{victim's ID}.for" extension (the identification code is
apple.com-mac-optimization[.]live is designed to trick visitors into downloading and installing a dubious application called Cleanup My Mac. This app supposedly removes a virus that this web page has detected on the visitor's Mac. Websites such as apple.com-mac-optimization[.]live should never
Nothsws is a family of scam websites, which are designed to promote dubious software. They operate by warning users of a supposed 'threat' detected on their devices and recommending Smart Mac Booster for its removal. No web page can find threats/issues on systems. Therefore, the problems they c
Hndry is a family of deceptive websites that encourage visitors to remove a virus that was supposedly detected by them. These sites invite users to download and install a dubious application that supposedly finds and eliminate the virus. In this case, a Hndry web page promotes an app called Smar
Hj8gjh is a family of scam websites, which are designed to endorse dubious applications. This variation promotes Smart Mac Booster. These deceptive sites use scare tactics to encourage visitors to install rogue apps. They warn users of a supposed virus detected on their MacOS (Mac Operating Syst
The Search Selector app helps users to search by providing results through the selected-search.com search engine. Typically, apps that promote search engines by changing browser settings are categorized as browser hijackers. They are also known as potentially unwanted applications (PUAs), since us
Discovered by Alex Svirid, .James is malicious software belonging to the Ouroboros ransomware family. It operates by encrypting data and demanding ransom payments for decryption. During the encryption process, all files are appended with the ransomware developer's email address, victim's unique I