During our examination of mefearcates[.]com, we discovered that it presents a misleading message to trick visitors into granting it permission to show notifications. We also found that notifications from mefearcates[.]com contain fake system warnings and other deceptive messages. Thus, mefearcates
Vulcan is ransomware, which we discovered while inspecting samples uploaded to VirusTotal. It encrypts and renames files and presents a ransom note. Vulcan replaces filenames with random strings and appends its extension (".vulcan"). For instance, it changes "1.jpg" to "7d9b9cc3ed944b141fc5151f9ff
Held is ransomware (from the Djvu family) that our team discovered during the examination of malware samples submitted to VirusTotal. We found that Held encrypts files and appends the ".held" extension to filenames. Also, it provides contact and payment information in the "_readme.txt" file. Here
During our inspection, we found that fyallusad[.]top uses clickbait to receive permission to show notifications. We also discovered that fyallusad[.]top can send deceptive notifications and expose users to online scams and other threats. Thus, it is highly advisable not to grant fyallusad[.]top pe
AlienWare is a ransomware based on Chaos. Note that the American computer hardware subsidiary brand of Dell, Alienware, has nothing to do with the ransomware. We discovered AlienWare while inspecting malware samples submitted to VirusTotal. Upon infiltration, AlienWare encrypts files, drops a rans
Our team has inspected this email and concluded that it is a phishing attempt. The email contains a fake alert regarding email account security. The scammers behind it aim to deceive recipients into opening a phishing website and entering personal information. Such emails should be ignored to avoi
Dark Intel is ransomware that we discovered while analyzing samples uploaded to VirusTotal. Once a device is infected, Dark Intel encrypts files, appends the ".encrypted" extension to filenames, changes the desktop wallpaper, and provides a ransom note ("Ezz.txt") containing payment instructions.
Our team has discovered a fake website (usual-apps-money[.]lol) imitating the USUAL platform (usual.money). The purpose of this deceptive web page is to steal cryptocurrency from individuals. Users should be careful with crypto-related platforms and always check their legitimacy to avoid financial
Our discovery of MRJOKERPALFINGER1984 occurred while examining malware samples submitted to the VirusTotal platform. MRJOKERPALFINGER1984 is ransomware designed to encrypt files and rename them by appending the ".MRJOKERPALFINGER1984" extension. The ransom note "HELP_DECRYPT_YOUR_FILES.txt" provid
Our inspection of the email has uncovered that it is a phishing email. Scammers designed it to appear like a notification regarding a confirmation of bank information. They aim to trick recipients into opening the attached file and disclosing personal information. This email should be ignored to a