OceanSpy is a ransomware variant based on Chaos. Our team discovered it while examining malware samples submitted to the VirusTotal platform. We learned that OceanSpy is designed to encrypt files and append an extension consisting of four random characters to their filenames. Also, OceanSpy change
After investigating the "Donation Of Crypto Funds" email, we determined that it is fake. The letter details a request made by a gravely ill wealthy individual seeking aid with distributing their cryptocurrency assets to charities. This mail lures recipients into visiting a phishing website that t
Our analysis of dailyweathertab.com has shown that it is a fake search engine that does not generate results. This fake search engine is promoted via an extension classified as a browser hijacker. Users are advised against using dailyweathertab.com or extensions associated with such websites.
ZILLA is ransomware that we discovered during an examination of malware samples submitted to VirusTotal. Our research has shown that ZILLA is part of the Dharma family. Once in the system, ZILLA encrypts files, changes the names of all encrypted files, displays a pop-up (a ransom note), and create
Our researchers discovered the No More 404 browser extension while investigating deceptive websites. It is promoted as a tool for avoiding HTTP errors and reviewing site performance data. Upon inspecting No More 404, we determined that it is advertising-supported software (adware). Adware
Shoponlinetab.com is a fake search engine endorsed by the "Shop online Tab" browser hijacker. We discovered this browser-modifying extension while investigating untrustworthy sites. Shop online Tab promises easy access to popular online shopping platforms. With this extension installed on their b
Upon inspecting yogadailyfitness.com, our team concluded that it is a fake search engine that does not generate results. We also learned that users are likely to visit yogadailyfitness.com unintentionally when their browsers are hijacked by an unwanted extension. Overall, yogadailyfitness.com and
Our inspection of this "Chase - Account Verification" email revealed that it is fake. The purpose of this spam mail is to deceive recipients into disclosing their online bank log-in credentials to a phishing website by making false claims regarding suspicious activities occurring on their accounts
Our researchers discovered the find.snav-web.com fake search engine when analyzing the Bookmark Plus New Tab browser hijacker. This extension alters browser settings to promote find.snav-web.com. Keep in mind that this website could be endorsed by other browser hijackers. Typically, browse
While browsing deceptive websites, our researchers discovered Bookmark Plus New Tab. This rogue browser extension promises to allow users to customize their browser wallpapers/backgrounds and provide quick access to bookmarked/most-visited websites. However, Bookmark Plus New Tab browser hijacker