Upon reviewing the email, it has been identified that it is a deceptive message (a phishing attempt) with the intention of deceiving recipients into disclosing sensitive information. The email masquerades as a notification from an email service provider and includes a link leading to a phishing we
AccessibleTool is an adware-type application. Our research team found it during a routine investigation of new file submissions to the VirusTotal platform. This app belongs to the AdLoad malware family. Advertising-supported software runs intrusive advertisement campaigns and may have other harm
Personalized_notepad_with_reminders is classed as a PUA (Potentially Unwanted Application). Our researchers discovered an installer containing this app during a routine inspection of suspicious websites. PUAs typically possess undesirable and possibly hazardous capabilities, and this likely applie
Our researchers discovered the Shiel ransomware while investigating new file submissions to the VirusTotal platform. This program is part of the Dharma ransomware family. Malware within this category is designed to encrypt data and demand payment for its decryption. On our testing system, Shiel r
During our examination, we discovered that CreatePremium inundates users with intrusive advertisements, categorizing the app as adware. Users frequently install such adware without a clear understanding of its functionalities. It is important to highlight that adware, including CreatePremium, ca
SPICA is the name of a backdoor-type malware. This malicious program is written in the Rust programming language. Software within this classification stealthily opens a "backdoor" to targeted machines, typically in order to cause further infection. SPICA has been in use since September 2023, but
In this article, we provide a review of deceptive notifications (fake warnings, alerts, and similar messages) posing as legitimate notifications from the operating system or security software. These deceptive notifications come from unreliable pages and often serve as gateways to scam websites des
While inspecting new file submissions to the VirusTotal site, our researchers discovered the Wessy ransomware. Malware within this classification encrypts data to make ransom demands for its decryption. After we executed a sample of Wessy on our testing system, it encrypted files and appended the
While assessing the application, it became evident that Conquerable.app is an ad-supported app linked to the Pirrit family. Conquerable.app displays intrusive advertisements and has the potential to collect personal information. Typically, applications of this nature, such as Conquerable.app, ar
During our inspection, we came across the finding that PantheraLeo is an unreliable extension distributed via a malicious installer. Once added to a browser, PantheraLeo activates the "Managed by your organization" feature (it can control this setting on Chrome and Edge browsers). Also, PantheraLe