Our researchers discovered the rujba.co[.]in website while investigating suspicious pages. After inspecting it, we determined that rujba-co[.]in endorses browser notification spam and generates redirects to other (likely suspicious/malicious) webpages. Visitors to rujba-co[.]in and similar pages
While reviewing new file submissions to VirusTotal, our research team found yet another adware from the AdLoad malware family called ActiveQuest. This rogue application operates by running intrusive ad campaigns, and it may have other harmful abilities as well. Adware stands for advertis
Our researchers discovered the "Up - Ad Blocker" browser extension while investigating untrustworthy sites. This software is endorsed as an ad-blocking tool specifically for YouTube and Google. However, after examining Up - Ad Blocker, we determined that it is advertising-supported software (adwa
Upon inspection, we determined that the "DocuSign - Completed Document" email is spam. It notifies recipients of the completion of a document signing. The goal of this mail is to lure users into visiting a phishing website that targets email account log-in credentials. The spam email with
Narnia is a remote administration Trojan (RAT) equipped with various harmful capabilities, including exfiltration of sensitive data, capturing screenshots, logging keystrokes, and stealing banking information. It poses a significant threat to users' privacy and security by enabling unauthorized ac
XRed is a backdoor-type malware that has been around since at least 2019. Software within this classification is designed to open a "backdoor" to systems for other malware or malicious components. XRed also has data-stealing abilities. Based on the presence of the Turkish language in the malware'
After checking out the "Discover Card - Unsuccessful Log-on Attempts Detected" email, we determined that it is fake. This phishing email aims to deceive recipients into disclosing their Discover account log-in credentials by making bogus claims regarding suspicious sign-in attempts. It must be em
In our examination, it was determined that Customize Your New Tab functions as a browser hijacker, altering the settings of affected browsers to promote a designated web address. Additionally, Customize Your New Tab may be able to access and extract various forms of data. Consequently, users shoul
QweZ is a rogue browser extension. It makes changes to browser settings to endorse (via redirects) the pixel-pioneers.net fake search engine. Additionally, this extension spies on users' browsing activity. Due to this behavior, QweZ is classed as a browser hijacker. Browser-hijacking softw
Upon scrutinizing the email, we identified telltale signs of a phishing attempt. The scammer behind this deceitful email endeavors to entice recipients to click the provided link and divulge personal information. Recipients must exercise caution and refrain from interacting with suspicious links i