Our research team discovered the SearchVPN browser extension while investigating dubious websites. This software is promoted as a VPN (Virtual Private Network) client. After analyzing this extension, we determined that it is a browser hijacker. SearchVPN modifies browser settings to promote a fake
After testing search.noted-it.com, we concluded that it is a fake search engine. Moreover, we discovered that it is promoted through a browser hijacker, an unwanted extension called NotedIt. Thus, it is highly advisable not to use search.noted-it.com and remove the associated extension if it is pr
During our analysis of Spectra browser extension, we learned that it is a browser hijacker. Upon adding this extension, it changes the settings of a browser to promote nwsrc4you.com. Spectra can expose users to scams and other online threats, and cause privacy issues. Thus, users should avoid addi
We have inspected the CryptData malware and found that it is ransomware from the MedusaLocker family. Our discovery of CryptData occurred during an analysis of samples uploaded to VirusTotal. This ransomware encrypts files and appends the ".cryptdata" extension to them. It also changes the desktop
Our research team discovered the calmarean.co[.]in rogue page while investigating suspicious websites. After inspecting this webpage, we learned that it promotes browser notification spam and redirects users to other (likely unreliable/hazardous) sites. Calmarean.co[.]in and similar pages are prim
Our analysis of bencapuran.co[.]in has revealed that it is one of the many deceptive websites designed to trick visitors into granting them permission to show notifications. Bencapuran.co[.]in uses this permission to promote various scams and other untrustworthy web pages. Thus, this site should n
We have inspected the email and found that it promotes a fraudulent offer to buy, sell, swap, and exchange cryptocurrencies. The scammers behind this scheme likely aim to steal money (cryptocurrency) or personal information from unsuspecting recipients. Thus, this email should be ignored to avoid
While browsing untrustworthy sites, our researchers found the emistiousne.co[.]in rogue webpage. It is designed to endorse spam browser notifications and redirect visitors to different (likely dubious/dangerous) websites. Most users access emistiousne.co[.]in and similar pages through redirects ca
After inspecting this "Transaction Intermediary" email, we determined that it is spam. This message is presented as a partnership proposal, wherein the recipient is offered to serve as an intermediary in the sender's financial affairs. The likely goal of this spam campaign is to obtain private dat
Asur is a Remote Access Trojan (RAT) targeting Android OSes (Operating Systems). Malware within this classification is designed to enable remote access/control over infected devices. As of the time of writing, Asur is under active development and currently boasts SMS management abilities and geolo