While reviewing untrustworthy websites, our researchers discovered the "Windows Defender Firewall Alert" technical support scam. This scheme mimics Windows alerts and claims the user's device is infected. The aim is to lure the victim into calling a fake helpline, thus roping them into an elaborat
Upon scrutinizing the application, it became evident that ResourceActivity functions as adware, displaying intrusive advertisements to users when active. Beyond the nuisance of ads, ResourceActivity may also gather diverse data. Therefore, users impacted by this should uninstall ResourceActivity
In the course of our inspection of malware samples on VirusTotal, we came across a ransomware variant named Xrp belonging to the GlobeImposter family. The purpose of Xrp is to encrypt files. Also, it appends an email address and the ".xrp" extension to filenames and provides a ransom note ("Read_F
VirtualDocument is a rogue application. Upon inspection, we determined that this piece of software operates as adware. VirtualDocument is part of the AdLoad malware family. This app is designed to generate revenue for its developers by feeding users with undesirable and potentially harmful adver
During an examination of the application, we discovered that LogiOptions is a suspicious program without a clear purpose. Moreover, its distribution involves other shady components. Thus, users should remove LogiOptions and all associated files and apps from affected computers as soon as possible.
While investigating new malware submissions to VirusTotal, our researchers found the LockShit BLACKED ransomware, which is based on Chaos. Malicious programs within this category are designed to encrypt files and demand payment for their decryption. On our test machine, LockShit BLACKED encrypted
Following a recent examination of malware samples submitted to VirusTotal, it has been established that Cdcc is associated with the Djvu ransomware family. Its main goal is to encrypt data, and it produces a ransom note ("_readme.txt") while adding the ".cdcc" extension to file names (for instance
While analyzing malware samples uploaded to VirusTotal, it has been determined that Cdxx belongs to the Djvu ransomware family. Its primary objective is to encrypt data. Also, it generates a ransom note ("_readme.txt") and appends the ".cdxx" extension to filenames (e.g., renames "1.jpg" to "1.jpg
In the process of reviewing the app, it became apparent that DanceTank operates as adware: when active, it displays annoying advertisements to users. In addition to showing ads, DanceTank may collect various data. Thus, affected users should remove DanceTank from their computers. DanceTa
Upon examination, it has been identified that this is a scam employing a deceptive page that displays multiple fake messages utilizing scare tactics to manipulate visitors into taking specific actions. Additionally, the deceptive page seeks permission to show notifications. Users are strongly advi