Our researchers discovered the "We Are Having Trouble With Firewall" scam while investigating dubious websites. It is a technical support scam that aims to trick victims into calling fake support lines by making bogus claims concerning their device security. It must be emphasized that the informa
Revenge Of Heisenberg is a ransomware based on Chaos, which our researchers discovered during a routine inspection of new file submissions to the VirusTotal platform. Ransomware is designed to encrypt files and demand payment for the decryption. There are two variants of Revenge Of Heisenberg, an
Richleads[.]top is a rogue webpage discovered by our researchers while investigating dubious sites. After inspecting this page, we learned that it promotes browser notification spam and produces redirects to other (likely untrustworthy/hazardous) websites. Most users enter webpages like richleads[
Our research team discovered Tiaow VApp while analyzing a rogue installer promoted by a deceptive webpage. The setup also included the fake "Save to Google Drive" browser extension. Tiaow VApp is a PUA (Potentially Unwanted Application). Upon analysis, we found that this app drops the Legion Loade
Our researchers discovered the seekthatonline.com fake search engine while analyzing the "SeekThatOnline - Access to favorite sites" browser hijacker. Websites of this kind cannot provide search results and tend to redirect to legitimate Internet search sites. Browser-hijacking software modifies b
After examining this "Offer For The Below Items" email, we determined that it is spam. This message requests the recipient to make an offer for the products detailed in the shared Microsoft Excel file. When the recipient attempts to review the document, they are lured into disclosing their email a
While browsing unreliable websites, our researchers discovered the vipdragonapp[.]monster rogue webpage. Upon inspection, we determined that it promotes deceptive/harmful content and browser notification spam. Additionally, this page can redirect users to different (likely dubious/dangerous) sites
While browsing suspicious websites, our researchers discovered the SecuriGuard app. It is endorsed as a browser with improved security and privacy features. Upon analysis, we determined that SecuriGuard is a PUA (Potentially Unwanted Application). Apps within this classification typically have ha
EpiStart, also known as EpiBrowser, is a rogue browser. This application is based on the Chromium open-source project. EpiStart (EpiBrowser) is considered rogue because it produces redirects to a fake search engine (epibrowser.com; potentially others) that cannot generate search results and leads
TorNet is a backdoor-type malware. Software within this category is designed to open a "backdoor" into machines. Essentially, this serves as a way to prep the system for further infection, and some of these programs can even carry out the malware infiltration themselves. TorNet has been distribut