Our researchers found the Spider ransomware during a routine inspection of new file submissions to the VirusTotal site. This program is part of the MedusaLocker ransomware family. Spider is designed to encrypt data and demand ransoms for its decryption; this malware utilizes double-extortion tacti
During our inspection of bealanews[.]com, we learned that this website is designed to lure visitors into agreeing to receive its notifications. To achieve this, bealanews[.]com utilizes clickbait. Users should never permit sites like bealanews[.]com to send notifications and avoid visiting them.
During our analysis of malware samples uploaded to VirusTotal, we discovered Root, a ransomware variant belonging to the MedusaLocker family. We found that Root encrypts and renames files, and provides a ransom note ("How_to_back_files.html"). It appends the ".root4" extension to filenames (the nu
After reviewing aroidsguide[.]com, our team determined that it is not a reliable website designed to obtain permission from visitors to send notifications through a technique known as clickbait. If allowed, aroidsguide[.]com can send misleading notifications. Therefore, users should not agree to r
Upon inspecting aroidssolutions[.]com, our team concluded that it is not a trustworthy website. The site uses deception to receive permission from visitors to send them notifications. Also, once allowed, aroidssolutions[.]com can deliver misleading notifications. Thus, users should avoid opening a
While investigating dubious websites, our researchers discovered the adrgyouweb[.]com rogue page. Upon inspection, we determined that it promotes browser notification spam and redirects users to other (likely unreliable/hazardous) sites. Most visitors to adrgyouweb[.]com and webpages akin to it a
Boot-upprogressiveextremelythe-file[.]top is the address of a rogue page discovered by our researchers during a routine inspection of suspect websites. This webpage promotes spam browser notifications and redirects visitors to different (likely dubious/malicious) sites. The majority of users acce
Our research team discovered allsidestv[.]com while investigating dubious websites. After examining this rogue page, we determined that it promotes browser notification spam and redirects users to different (likely untrustworthy or dangerous) sites. The majority of visitors to allsidestv[.]com an
Amnesia is the name of a malicious program. There are two variants of this malware – for Windows and Android operating systems. The program aims to extract various types of sensitive data from infected machines – thus, it is classed as a stealer. However, Amnesia also exhibits RAT (Remote Access
Our team has analyzed andespeaks[.]top and learned that its purpose is to obtain permission to send notifications to users. This website employs a deceptive technique to trick users into granting it this permission. Thus, users should avoid visiting andespeaks[.]top and similar web pages.