Redtext[.]biz is a rogue website, one of many thousands out there. It shares similar traits with solo85.biz, onlinecontent.fun, noorotin.biz and others. It operates by redirecting users to other unreliable and possibly malicious sites; it also delivers dubious content for user consumption. It sho
Sharing many similarities with solo85.biz, meknews.biz, ernorvious.com and weads32.com, babunenhemted[.]pro is a rogue website. It is designed to generate redirects to compromised and possibly malicious sites, as well as present unreliable content for user consumption. It is noteworthy, that few
mobileapplesecurity[.]com is an untrustworthy, deceptive web page which targets mostly iPhone and iPad users. Note that mobileapplesecurity[.]com advertises an app called Web Security Checker designed to remove viruses that were supposedly detected by this website. In fact, the viruses are fake.
Mirox25[.]biz is a rogue website. Since such deceptive sites are a widespread phenomenon, they are quite similar in-between. The mirox25[.]biz is akin to celeb-secret.live, mega-deals.mobi, onlinecontent.fun and thousands of others. They are designed to feed users unreliable content (e.g. clickbai
StreamMe is endorsed as a tool for easy access to newest TV related content with an enhanced web search. While seemingly useful and innocuous, StreamMe is a browser hijacker. It modifies browser settings to promote its fake search engine (feed.stream-me.com) and spies on users' browsing habits. I
apple-vpn-pro[.]com is a deceptive website that displays fake virus messages and encourages visitors to remove the 'detected viruses' with a specific application. At time of the research, apple-vpn-pro[.]com promoted the Web Security Checker application. Do not trust sites such as apple-vpn-pro[
bestappsecurity[.]com is usually opened on iPad or iPhone devices, however, this deceptive website also targets desktop (Mac) users. The site is used to trick people into downloading the Web Security Checker app. Furthermore, bestappsecurity[.]com displays fake notifications about supposedly 'd
Discovered by GrujaRS, TFlower is software categorized as ransomware. Unlike most ransomware-type programs, it does not change extensions of encrypted files. It does, however, create a ransom message (within a text file named "!_Notice_!.txt") that contains instructions about how to purchase a dec
Discovered by Jakub Kroustek and belonging to the Dharma family, Ebola is malicious software categorized as ransomware. It renames all files by adding an ID number, email address, and the ".ebola" extension to filenames. For example, "1.jpg" might become "1.jpg.id-1E857D00.[newebola@aol.com].ebola
Discovered by Michael Gillespie, Domn is a malicious program and part of the Djvu ransomware family. Like most programs of this type, Domn is designed to prevent victims from accessing their data by encrypting files with strong encryption algorithms. To regain access to their files, victims are en