Our research team discovered the flamehammer[.]top rogue webpage while inspecting unreliable sites. This page is designed to promote browser notification spam; at the time of research, it did so by utilizing a fake CAPTCHA test. Additionally, it can redirect users to other (likely untrustworthy/ha
Search-UIX is a rogue browser extension that operates as a browser hijacker. Software within this classification modifies browser settings to promote (via redirects) fake search engines. While there is an illegitimate Internet search website that shares this extension's name – searchuix.com – thi
Getfreevpn[.]click is a rogue page that runs scams and pushes spam browser notifications. It can also redirect users to different (likely unreliable/dangerous) websites. Visitors to this and similar webpages access them primarily through redirects generated by sites that utilize rogue advertising
Our research team found the EssentialProcesser application while inspecting new file submissions to the VirusTotal platform. After investigating this app, we determined that it is advertising-supported software (adware). EssentialProcesser belongs to the AdLoad malware family. This app is design
Our researchers discovered the Nnll ransomware-type program while reviewing new submissions to the VirusTotal website. Ransomware operates by encrypting data and demanding ransoms for its decryption. After executing a sample of Nnll on our test machine, we found that it encrypts files and appends
While reviewing new file submissions to the VirusTotal platform, we found the FontResultsMultitask application. Our analysis revealed that FontResultsMultitask is adware belonging to the AdLoad malware family. Adware stands for advertising-supported software. It feeds users with unwanted
In the course of examining a malicious installer, we encountered Cervidae and its troubling actions as a browser extension. These actions included enabling the "Managed by your organization" feature in the Chrome browser, gathering various types of data, and overseeing specific aspects of the brow
ExplorerMainFrame is an adware-type application that our research team found while inspecting new submissions to the VirusTotal site. This piece of advertising-supported software is part of the AdLoad malware family. ExplorerMainFrame is designed to run intrusive ad campaigns. Adware ope
During an investigation into a malicious installer, we came across RanunculusAcris and its concerning behavior as a browser extension. These activities encompassed the enabling of the "Managed by your organization" feature in the Chrome browser, the collection of diverse data, and the management o
Our examination of the "Password Marked For Deletion" email revealed that it is spam promoting a phishing scam. The letter targets recipients' email account log-in credentials by claiming that the password has expired. The scam email with the subject "Account Security Notice" (may vary) st