While inspecting suspicious websites, our researchers found the alertsphere[.]top rogue page. It operates by promoting browser notification spam and generating redirects to different (likely unreliable/dangerous) sites. Users primarily access webpages like alertsphere[.]top through redirects caus
Zephyr Miner is a piece of malicious software classified as a cryptocurrency miner. This malware is designed to mine (i.e., generate) the Zephyr (ZEPH) cryptocurrency for the attackers. Zephyr Miner is a sophisticated cryptominer that exhibits anti-detection and persistence-ensuring capabilities.
SMOK is a malicious program within the ransomware category. Malware of this kind encrypts data in order to demand payment for the decryption. Many ransomware-type programs also rename the encrypted files. There are several variants of SMOK. This program appends the filenames of affected files wit
While browsing suspicious websites, our research discovered this "SyncAI Wallet Connection" scam on blockchainmiddleware.pages[.]dev (note that it could be hosted elsewhere). It imitates the SyncAI platform (syncai.network), yet the scheme bears no association with it or any other existing projec
Our inspection of watchgreatlyquickthe-file[.]top has shown that this website cannot be trusted. It presents misleading content to deceive visitors into agreeing to receive its notifications. If allowed, watchgreatlyquickthe-file[.]top can bombard users with fake and annoying warnings, alerts, off
AdBlocker Professional is promoted as a tool that blocks intrusive advertisements, enhances browsing peed, and improves online privacy. However, during our analysis, we found that AdBlocker Professional can display unwanted ads. Therefore, our team classified the AdBlocker Professional extension a
While inspecting new submissions to VirusTotal, our research team discovered the Imploder ransomware. This malicious program encrypts files and demands ransoms for the decryption. On our testing system, Imploder encrypted files and appended their filenames with a ".imploder" extension. To elabora
Our team has examined ovliveme[.]com and found that it is a misleading website designed to obtain permission to show notifications. When websites like ovliveme[.]com have permission to send notifications, they bombard users with fake warnings, offers, and other messages. Therefore, users should av
We have analyzed tutselrapt[.]com and learned that it displays deceptive content (a fraudulent survey). Also, tutselrapt[.]com wants to show notifications. Such web pages should never be permitted to send notifications, as their notifications can expose users to various online threats. Tut
Pro Video Downloader is promoted as an easy-to-use tool that lets you download online videos in various formats and resolutions with just one click. However, our examination has shown that this browser extension can display advertisements. Therefore, we classified Pro Video Downloader as adware.