Weatherly is a rogue extension classed as a browser hijacker. This piece of software makes alterations to browser settings in order to generate redirects. Weatherly also collects sensitive browsing-related data. Typically, browser hijackers assign fake search engines as browsers' default,
WingsOfGod (also known as WogRAT) is a malware classed as a Remote Access Trojan (RAT). These trojans allow attackers to access and control devices remotely. RATs may enable user-level control over infected machines. WingsOfGod has a Windows and Linux variant. The malicious program has been aroun
Planet Stealer is a malicious software designed to extract sensitive information from compromised computers. It targets data from browsers, cryptocurrency wallets, Discord, and more. The creators of this malware offer it for sale at $75 per week or $200 per month. Planet stealer is a sophi
Our researchers found the Zarik Locker ransomware while reviewing file submissions to the VirusTotal site. Malware of this kind encrypts data and demands ransoms for its decryption. After we executed a sample of Zarik Locker on our testing system, it encrypted files and added a ".zarik5313" exten
During our examination of the myondsshop[.]com page, we discovered that it employs clickbait (a deceptive technique) to trick visitors into allowing it to send notifications. We also found that myondsshop[.]com has at least two designs and can redirect users to similar websites. Myondsshop
We have examined the email and discovered that it is a fraudulent email masquerading as a notification from an email service provider. The perpetrators of this scam aim to entice recipients into disclosing sensitive information on a counterfeit login page. Such emails are commonly referred to as p
After reviewing the "I Compromised Your Operating System" email, we determined that it is spam. The letter falsely claims that the sender has infected the recipient's devices with a trojan. This malware was used to record and edit a compromising video of the recipient, which will be leaked to thei
We have examined the email and discovered that it is a phishing attempt. This email is disguised as a communication from a remittance officer concerning payment refunds. The individuals orchestrating this scam intend to trick recipients into revealing personal information and (or) transferring mon
In the course of our inspection of malware samples uploaded to the VirusTotal site, we came across a Skynet ransomware variant dubbed Payuranson. The purpose of this malware is to encrypt files. Additionally, Payuranson creates a ransom note ("SkynetData.txt") and renames files (appends the ".payu
After conducting an examination of the malware samples provided on the VirusTotal platform, we have identified Wiaw as a variant belonging to the Djvu ransomware family. Wiaw operates by encrypting files and altering their filenames, adding the ".wiaw" extension. As an illustration, it transforms