DataDestroyer is ransomware that our team discovered while examining malware samples submitted to VirusTotal. This ransomware is based on Chaos. Upon infiltration, it encrypts files and appends the ".destroyer" extension to filenames. Also, DataDestroyer creates a ransom note ("note.txt" file). A
The website in question – nhereugo.com – is a fake search engine. Sites within this classification cannot provide search results and redirect to legitimate Internet search websites. Nhereugo.com is no exception. Additionally, fraudulent search engines tend to collect information about their visit
During our examination of a dubious web page offering pirated content, we discovered the AERO Sample program. Upon installing it, we found that it had no clear purpose or functionality. This suggests that the program may be designed for malicious intent. Therefore, it is advisable to avoid program
After reading the "You Are One Of A Kind" email, we determined that it is spam. Upon inspection, we determined that this letter is promoting a sextortion scam. The email falsely claims that the sender infected the recipient's devices, obtained vulnerable data, and recorded a sexually explicit vide
During our inspection of smartlifehackers[.]org, we found that this site is designed to appear like a legitimate website. Also, smartlifehackers[.]org wants to show notifications. Overall, smartlifehackers[.]org is not a reliable website and should not be allowed to send notifications. It
Our inspection of the "Your Statement Reviewed And Paid" email revealed that it is spam. The letter claims that the recipient's accounting department has paid their statement. The user is lured to a phishing site through which they can supposedly review the statement. The website promoted by this
We have inspected the email and concluded that it is a scam email disguised as a notification regarding a signed and completed contract. Emails of this type are known as phishing emails, and scammers behind them aim to extract sensitive information from recipients. Thus, this (and similar) emails
Our analysis of the SchedulerProtocol app has shown that it functions as adware (advertising-supported software). SchedulerProtocol generates intrusive advertisements and might have additional capabilities. Usually, apps of this type are promoted/distributed using deceptive methods to trick user
Our researchers found PrivAci in a bundled installer promoted by a deceptive page, which was discovered during a routine investigation of a Torrenting website that utilizes rogue advertising networks. PrivAci is a PUA (Potentially Unwanted Application). Typically, these apps possess harmful capab
Poseidon is a stealer-type malware targeting macOS devices. This malicious program seeks to acquire files, log-in credentials, cryptowallets, and other sensitive information. In the early summer of 2024, Poseidon was observed proliferating via malicious Google ads. As mentioned in the in