BLX (also known as XLABB) is a stealer capable of exfiltrating a variety of sensitive data from victims' devices. The malware targets log-in credentials, cryptocurrency wallets, and other vulnerable information. At the time of writing, BLX is under active development. Its developers are promoting
Upon analyzing of penadee[.]com, we determined that it is a deceptive web page created to trick visitors into consenting to receive its notifications. Typically, notifications from sites like penadee[.]com are deceptive. For this reason, it is strongly recommended to avoid agreeing to receive noti
Ailurophile is an information stealer targeting Windows operating systems. Cybercriminals have been observed promoting Ailurophile on GitHub. Usually, malware like Ailurophile is utilized to harvest sensitive information that cybercriminals use to steal money, hijack personal accounts, extract mor
Our researchers discovered the Colony ransomware-type virus while investigating new submissions to the VirusTotal website. This malicious software encrypts data and demands ransoms for the decryption. On our testing system, Colony encrypted files and altered their names by adding the attackers' e
We have tested Victualry.app and found that it has traits of adware. Once installed, Victualry.app delivers annoying advertisements. Additionally, we discovered that Victualry.app belongs to the Pirrit family. It is highly advisable not to install such apps and uninstall them if they are already
Our team has reviewed plaucratertleed[.]com and discovered that its purpose is to receive permission to show notifications using a deceptive technique known as clickbait. As a rule, sites like plaucratertleed[.]com deliver unreliable notifications. Thus, they should not be permitted to send notifi
Our analysis has shown that news-xonaro[.]cc is one of the deceptive websites created to lure visitors into agreeing to receive their notifications. Like most of these sites, news-xonaro[.]cc uses clickbait to obtain permission to send notifications. It is highly advisable to avoid visiting sites
While browsing untrustworthy sites, our researchers found ourhypespot[.]com. This rogue page endorses spam browser notifications and redirects visitors to other (likely unreliable/harmful) websites. Most users enter webpages like ourhypespot[.]com through redirects caused by sites using rogue adv
Ourcommonnewz[.]com is the address of a rogue webpage discovered by our research team during a routine investigation of dubious sites. This page is designed to promote browser notification spam and redirect visitors to other (likely untrustworthy/hazardous) websites. The majority of users access
Our researchers discovered news-yanuhi[.]com while inspecting suspect sites. After investigating this rogue page, we determined that it endorses browser notification spam and redirects visitors to different (likely unreliable/harmful) websites. Users mainly access news-yanuhi[.]com and similar we