Interlock is a ransomware that encrypts files and demands payment for the decryption. In addition to a Windows variant, there is a version of Interlock targeting Linux operating systems. When we executed a sample of this ransomware on our test machine, it encrypted files and added a ".interlock"
While browsing suspect websites, our researchers discovered the topsafeguardcenter[.]com rogue page. It is designed to promote deceptive content and browser notification spam. The webpage can also redirect users elsewhere (likely untrustworthy/dangerous) sites. Most visitors enter pages like tops
Our researchers discovered the pifeen[.]com rogue page during a routine investigation of suspicious websites. It operates by endorsing spam browser notifications and by redirecting users to other (likely unreliable/hazardous) sites. Most visitors to pifeen[.]com and webpages akin to it access the
Kilimanjarospot[.]top is a rogue webpage that promotes browser notification spam and generates redirects to different (likely dubious/malicious) sites. The majority of visitors to pages like kilimanjarospot[.]top access them via redirects caused by websites that utilize rogue advertising networks
After examining this "You Have Pending UNSYNC Messages" email, we learned that it is spam. This fake message claims that there are pending emails that did not reach the recipient's inbox. The spam mail aims to lure victims into visiting a phishing website that targets email account log-in credenti
We have examined this email and learned that it is a fraudulent message, falsely claiming to be from Ms. Jacquelline Fuller, the Director of Accessibility at Google. The scammers behind this email aim to deceive recipients into believing they are eligible for a donation while attempting to steal m
We have inspected fujivista[.]top and discovered that this page is designed to receive permission to show notifications. It uses clickbait to trick visitors into permitting it to send notifications. Users should avoid visiting fujivista[.]top and similar sites to avoid exposure to online threats.
After inspecting this "Webmail - Messages Are Yet To Reach Your Mailbox" email, we determined that it is spam. This mail promotes a phishing scam wherein recipients are lured into visiting a fake sign-in page targeting email account log-in credentials. It must be stressed that the information in
Kasper is ransomware, which we discovered while examining malware samples submitted to VirusTotal. Our analysis has shown that Kasper encrypts files, modifies filenames of the encrypted files, and generates a ransom note ("README kasper.txt"). It appends kasperskyrans@gmail.com email address, the
This fraudulent scheme is presented on a fake website posing as a legitimate Bitcoin airdrop launched by Binance. The scammers behind it aim to steal both personal information and cryptocurrency from unsuspecting individuals. Therefore, this and similar schemes should be recognized as scams and av