Dice is ransomware that we discovered while examining malware samples uploaded to VirusTotal. Our analysis has shown that Dice encrypts files, appends its extension (".dice") to filenames, and creates a ransom note ("readme.txt"). An example of how files encrypted by Dice are renamed is "1.jpg" be
During our examination of bestautheinc[.]club, we found that this page is designed to trick visitors into granting it permission to send notifications. Bestautheinc[.]club uses a method known as clickbait to receive that permission. Usually, users unintentionally land on sites like bestautheinc[.]
We have inspected besteusinc[.]com and discovered that its purpose is to receive permission to show notifications to visitors. The site uses a clickbait tactic to trick visitors into granting this permission. Users should avoid visiting besteusinc[.]com and similar web pages. Besteusinc[.]
While browsing questionable websites, our researchers found another adware that impersonates an ad-blocker called "Ad Squasher". It promises to block advertisements and trackers, instead – this browser extension displays them and spies on users' browsing activity. Adware stands for adverti
Our researchers discovered Cool Tab Pro while inspecting dubious websites. Upon examining this browser extension, we learned that it changes browser settings to generate redirects. This mode of operation classifies Cool Tab Pro as a browser hijacker. Browser hijackers assign promoted sites
Our research team discovered the Download Files Now browser extension while investigating dubious websites. Upon examination, we determined that this unwanted extension spies on users' browsing activity and may possess other harmful capabilities. Download Files Now browser extension reques
While investigating suspect sites, our researchers discovered the "DappWalletnode" scam. This fake platform aims to deceive users into disclosing their cryptocurrency wallet log-in credentials. It must be stressed that this phishing scam is not associated with any legitimate products, services, or
After reading the "Yahoo Canada Lottery" email, we determined that it is spam. The fake letter claims that the recipient has won 5 million USD in a lottery. The phishing email instructs to provide personally identifiable information to claim the prize. In addition to targeting private data, this s
While inspecting suspicious websites, our research team discovered the "RPC Recovery Hub" scam. It is disguised as a protocol for addressing cryptocurrency wallet issues. Instead, the phishing scheme seeks to steal users' wallet log-in credentials. It must be stressed that this scam is not associa
While investigating deceptive websites, our researchers discovered a promotional page for Puppies New Tab. It is promoted as an extension that displays dog-themed browser wallpapers. After installing Puppies New Tab on our test machine, we learned that it modifies browser settings to endorse (via