NullBulge is ransomware based on LockBit. Cybercriminals behind NullBulge have been observed targeting AI and gaming entities. In addition to encrypting files, NullBulge appends a random extension to filenames, changes the desktop wallpaper, and creates a ransom note ("[extension].README.txt"). A
ExploreBuffer is a rogue application classed as adware. Our researchers discovered it while browsing new file submissions to the VirusTotal platform. This app is part of the AdLoad malware family. ExploreBuffer is designed to generate revenue for its developers through advertising. Adwar
Labour is ransomware that our team has discovered during an examination of malware samples uploaded to the VirusTotal platform. Labour encrypts files and appends the ".labour" extension to filenames (e.g., it renames "1.jpg" to "1.jpg.labour", "2.png" to "2.png.labour", and so forth). It also prov
While inspecting iodides[.]org, we found it to be a deceptive web page. Once on iodides[.]org, visitors are presented with misleading content. The creators of iodides[.]org aim to trick visitors into agreeing to receive notifications from their page. Iodides[.]org and similar websites should be av
We have inspected upfurretan[.]com and discovered that this is an untrustworthy website. The purpose of upfurretan[.]com is to lure visitors into consenting to receive notifications from it. Additionally, upfurretan[.]com can redirect visitors to other dubious web pages. Thus, users should avoid v
Favoritesearches.com is a fraudulent search engine. Typically, websites of this kind cannot provide search results and redirect to legitimate search engines. Favoritesearches.com is no exception. Users may begin experiencing redirects to these fake webpages when a browser hijacker is installed on
Browser-searching.com is a fake search engine that provides inaccurate search results, which may include harmful content. Typically, sites of this kind are promoted (through redirects) by browser-hijacking software. Additionally, illegitimate search engines gather information about their visitors.
We found that wondersearches.com masquerades as a legitimate search engine but is actually a fake one promoted through an extension that functions as a browser hijacker. Therefore, users encountering wondersearches.com are advised to promptly remove both the website and its associated extension fr
Rewindsearch.com is a fraudulent search engine. Unlike most sites within this classification, rewindsearch.com can provide search results, although they are inaccurate and may include harmful content. Typically, fake search engines are promoted (via redirects) by browser hijackers. Browser
After investigating the "Disbursement Form" email, we determined that it is fake. The purpose of the deceptive letter is to trick recipients into providing their email account log-in credentials to a phishing file attached to this mail. This spam email is disguised as a notification reques