JavaRatty (also known as JavaCrypt) is malicious software classified as ransomware. Most ransomware-type programs encrypt data, however, JavaRatty damages files rather than encrypting them. When this malware damages files, they are appended with the ".encrypted" extension. Therefore, "1.jpg" might
securedconection[.]com is the address of a deceptive website that targets people who use iPhones. It display a fake virus notification and trick visitors into installing software that supposedly removes 'detected' viruses. At the time of research, securedconection[.]com urged users to download a
safeiphoneconnection[.]com is a deceptive/scam website. Visitors to this site are warned that their device has been infected, and if the threats are not removed, they risk permanent damage. Note that no web page can detect threats/issues present on any system - any that make such claims cannot b
youhave-1-message[.]com is a deceptive website that targets iPhone users. It promotes a dubious application that supposedly removes fake viruses detected by the site. At the time of research, youhave-1-message[.]com encouraged users to download and install an application called Antivirus SafeGua
Discovered by Jakub Kroustek, ROGER is a malicious program belonging to the Crysis/Dharma ransomware family. It operates by encrypting data and demanding ransom payments for decryption tools/software. During the encryption process all affected files are renamed with the victim's unique ID, develop
vpncheckyou[.]com is one of many deceptive websites that use scare tactics to trick people into downloading dubious software. At the time of research, this web page was designed to trick visitors into believing that their devices (iPhones) were infected with viruses. It then encourages them to
"Mac OS X is infected (4) by viruses" is a typical virus alert. Pop-up windows of this type appear only on untrustworthy, deceptive websites. Typically, people visit these sites unintentionally - they are redirected by potentially unwanted applications (PUAs), which cause unwanted redirects, del
"PRIZE EMAIL" is a scam run by deceptive websites. It claims that users' emails have been selected as participants in a prize promotion, and therefore they have won certain prizes. In fact, the scam operates by tricking users into making monetary transactions, which are supposedly necessary to rec
Hets is malicious software belonging to the Stop/Djvu ransomware family. Devices infected with this malware have their data encrypted and the cyber criminals behind this infection demand ransom payments for decryption. When it encrypts files, the program renames them with the ".hets" extension. F
"Microsoft Protected Your Computer" is a notification that is displayed on the website of a technical support scam. This web page is disguised as an official Windows Support website, however, Microsoft has nothing do to with it. The main purpose of this scam is to trick people into calling scamme