Hlas is ransomware from the Djvu family. Once a computer is infected with the malware, files become encrypted and renamed (with the ".hlas" extension in their filenames). A ransom note (named "_readme.txt") is also provided. An example of how encrypted files are renamed is "1.jpg" being changed to
BlotchyQuasar (variant of QuasarRAT) is a remote access Trojan (RAT). Typically, cybecriminals utilize RATs to steal sensitive information and (or) deploy other malware. Threat actors have been observed distributing BlotchyQuasar via email. Users should immediately eliminate BlotchyQuasar from inf
News-nuriga[.]com is a rogue page found by our research team during a routine inspection of dubious websites. After investigating this webpage, we determined that it promotes spam browser notifications and redirects users to different (likely untrustworthy/harmful) sites. Visitors to news-nuriga[
Upon inspection, we learned that the mykneads24[.]com rogue webpage promotes browser notification spam and redirects visitors to different (likely dubious/malicious) sites. Most users access pages like mykneads24[.]com through redirects caused by websites that employ rogue advertising networks. O
While investigating submissions to VirusTotal, our researchers discovered a ransomware identical to Available_for_trial named Trial_recovery. Malware within this class is designed to encrypt data and demand ransoms for its decryption. Trial_recovery also renames the files it locks following the "
JsTimer is presented as a simple timer extension for Chrome browsers. However, we found that it is distributed alongside other dubious extensions and apps. Also, it can read certain information. Therefore, we classified JsTimer as an unwanted extension. If this or any associated extension (like Fu
Our researchers discovered the mumpings[.]com rogue page while investigating dubious websites. After examining this webpage, we determined that it operates by promoting browser notification spam and generating redirects to other (likely unreliable/dangerous) sites. Most users enter mumpings[.]com
Mnadsnetwork[.]com is a rogue page discovered by our researchers during a routine investigation of dubious websites. Upon investigation, we learned that it endorses spam browser notifications and redirects users to other (likely untrustworthy/hazardous) sites. Most visitors to mnadsnetwork[.]com
During our inspection of QuickSearch, we found that this extension functions as a browser hijacker. Its purpose is to promote a fake search engine by modifying the settings of a hijacked browser. Users should avoid adding QuickSearch to browsers and remove it if it is already present. Quic
Our researchers found the XiN ransomware-type program while reviewing new submissions to the VirusTotal site. It belongs to the Xorist ransomware family. Malware of this kind encrypts data and demands payment for the decryption. On our test machine, XiN encrypted files and appended their filename