Vgod is ransomware designed to encrypt files and append the ".Vgod" extension to them. Also, it changes the desktop wallpaper and provides a ransom note named "Decryption Instructions.txt". Cybercriminals behind Vgod use the malware to extort money from victims. An example of how Vgod renames fil
FrigidStealer is a malware targeting Mac operating systems. This malicious program is classed as a stealer, and as the classification implies – it is designed to steal sensitive information. FrigidStealer has been observed being spread via Web inject campaigns that redirect users to dedicated we
Zhong Stealer is a piece of malware that infects Windows systems, stays active, and steals sensitive data while avoiding detection. It uses various tricks to remain hidden, gather information, and keep control of the infected system. If the system is compromised, Zhong Stealer should be removed as
In our analysis, we found that getelltheprecise[.]org, if allowed, can send unwanted notifications. The site uses clickbait to obtain permission to send them. Web pages like getelltheprecise[.]org should not be permitted to show notifications to avoid scams, unwanted downloads, and other threats.
While browsing suspect sites, our researchers found the jiilyis[.]info rogue page. It promotes online scams and browser notification spam. Additionally, jiilyis[.]info can redirect users to other (likely untrustworthy/dangerous) websites. Jiilyis[.]info and similar webpages are primarily accessed
We have examined bonalable[.]com and found that its purpose is to deceive visitors into granting it permission to send notifications. If this permission is given, bonalable[.]com can show fake warnings and other deceptive notifications. Thus, bonalable[.]com and similar sites should be avoided.
Our researchers discovered the CipherLocker ransomware while investigating new submissions to the VirusTotal platform. After we executed a sample of this malicious program on our test machine, it encrypted files and added a ".clocker" extension to their names. An original filename such as "1.jpg"
Our inspection of glofakraugnie[.]com has revealed that this page hosts fraudulent content and requests permission to show notifications. Users who agree to receive notifications from sites like glofakraugnie[.]com risk being exposed to scams and other online threats. Thus, glofakraugnie[.]com sho
During our routine examination of malware samples submitted to VirusTotal, we discovered ransomware belonging to the Xorist family called Hunters. Cybercriminals use the malware to encrypt files and demand a ransom for a decryption tool. Also, Hunters renames files and provides a ransom note, "HOW
During our review of archerclus[.]com, we identified that the site shows misleading content and wants to display notifications. If users grant this permission, the site can send deceptive notifications that can lead to other untrustworthy websites. Thus, archerclus[.]com should be avoided and clos