Our researchers discovered the NightSpire ransomware-type program while investigating new file submissions to the VirusTotal platform. It is part of the Snatch ransomware family. This malware is designed to encrypt data and demand payment for the decryption. On our test machine, NightSpire encryp
Hilipinge[.]com is a rogue webpage that our research team found during a routine inspection of suspicious websites. We determined that this page aims to promote browser notification spam, and at the time of research, did so by using a fake CAPTCHA test. This webpage can also redirect users to diff
Our researchers discovered the bequalmal[.]com rogue page while investigating suspicious sites. After examining this webpage, we learned that it promotes spam browser notifications and redirects users to other (likely unreliable/hazardous) websites. The majority of visitors to bequalmal[.]com and
Appriating[.]com is a rogue webpage discovered by our researchers during a routine investigative session. Upon examination, we learned that this page endorses browser notification spam and redirects visitors to different (likely dubious/dangerous) sites. Most users enter appriating[.]com and analo
While browsing new submissions to VirusTotal, our researchers discovered Chunago.app adware. This application is part of the Pirrit adware family. Chunago.app is designed to generate revenue for its developers/publishers through advertising. Adware stands for advertising-supported softwa
Our research team discovered Lathy.app while investigating new file submissions to the VirusTotal website. After inspecting this application, we learned that it is adware from the Pirrit family. Advertising-supported software is designed to generate revenue for its developers/publishers through
While investigating suspicious sites, our research team discovered this "Resolv Discord Verification" scam. It masquerades as the Resolv protocol website (resolv.xyz). The fake webpage requests users to complete a Discord verification process – the goal is to deceive them into exposing their digit
We have analyzed snescouremast[.]com and determined that it is a deceptive website that uses clickbait to trick users into granting it permission to deliver notifications. Once allowed, the site can flood users with misleading messages intended to drive traffic to other untrustworthy websites (inc
As its name suggests, Blaze Browser is a web browser. We discovered it on a shady website and, upon inspection, concluded that it is an unwanted application that promotes a fake search engine. Because of these findings, users should avoid installing Blaze Browser and uninstall it if it is already
We have inspected Resile.app and discovered that this is an advertising-supported application flagged as malicious by multiple security vendors. An additional finding is that Resile.app belongs to the Pirrit family. Users should avoid installing this app as it can expose them to scams, privacy r