During our examination of a malicious installer downloaded from a shady website, we encountered the MelursusUrsinus browser extension. Our team learned that it is a malicious extension that can activate the "Managed by your organization" feature within the Chrome browser, gather various data, and
After reviewing GeneralAccess, our team has determined that its primary function is to deliver intrusive advertisements to users, categorizing it as adware. It is worth highlighting that similar apps to GeneralAccess are frequently promoted and distributed through deceptive means. Thus, users in
While investigating dubious websites, our research team found a deceptive page promoting an installer containing this fake Google Drive browser extension. This piece of malicious software has data-stealing capabilities, and it can display spam browser notifications. It must be emphasized that thi
ValleyFall is the name of spyware, malicious software designed to secretly gather information from a victim's computer or device without their knowledge. Additionally, ValleyFall can infect computers with a RAT component primarily designed for password theft and keylogging on infected computers.
Upon conducting a comprehensive examination, our team has determined that the purpose of this email is to deceive recipients into divulging their personal information. Emails of this kind are categorized as phishing attempts. In this case, scammers aim to lure recipients into entering sensitive de
Following an analysis of GeneralExplorer, our team has established that its primary purpose is to deliver intrusive advertisements to users, classifying it as adware. It is important to emphasize that apps akin to GeneralExplorer are often promoted and distributed through deceptive methods.
While examining malware samples using the VirusTotal platform, we encountered the Wwhu ransomware, which belongs to the Djvu family. Once it gains access to a computer, this ransomware encrypts data and adds the ".wwhu" extension to file names. As an example, it renames "1.jpg" to "1.jpg.wwhu" and
While investigating a malicious installer, we came across CumulonimbusIncus and its concerning behavior as a browser extension. This behavior encompassed activating the "Managed by your organization" feature within the Chrome browser, collecting diverse data, and monitoring specific components of
Our research team discovered the flamehammer[.]top rogue webpage while inspecting unreliable sites. This page is designed to promote browser notification spam; at the time of research, it did so by utilizing a fake CAPTCHA test. Additionally, it can redirect users to other (likely untrustworthy/ha
Search-UIX is a rogue browser extension that operates as a browser hijacker. Software within this classification modifies browser settings to promote (via redirects) fake search engines. While there is an illegitimate Internet search website that shares this extension's name – searchuix.com – thi