Press is a ransomware-type program. Malware within this category is designed to encrypt data and demand payment for its decryption. The Press ransomware operates in this manner as well. It also alters the name of encrypted files by appending them with a ".press" extension. For example, an origina
During our assessment of the malware, it was found that Gotmydatafast operates as ransomware. Upon infiltrating the operating system, Gotmydatafast encrypts and renames files and provides two ransom notes ("info.hta" and "info.txt"). This ransomware is part of the Phobos family and was discovered
During our examination, we discovered that DynamicTable is an application of concern, as it exhibits unwanted advertisements. Consequently, DynamicTable is categorized as adware. Apart from displaying ads, DynamicTable has the potential to collect user data. Typically, applications similar to Dy
Upon examining the application, we found that Ad Skipper is designed to display advertisements instead of fulfilling its intended purpose of "skipping" them. Applications like Ad Skipper are classified as adware. It is typical for such apps to be promoted without disclosing the full extent of thei
While investigating suspect websites, our researchers discovered Extreme Security Adblocker. This browser extension is promoted as a security-oriented ad-blocking tool. However, after examining this piece of software, we determined that it is adware. Hence, instead of removing adverts – it displa
Our researchers discovered the Mycool search browser extension during a routine inspection of dubious websites. After investigating this piece of software, we determined that it is a browser hijacker. Mycool search makes changes to browser settings in order to promote (via redirects) the search.my
AltostratusOpacus is the name of a malicious browser extension. While investigating dubious sites, our researchers discovered this software in an installer promoted by a deceptive webpage. AltostratusOpacus targets Google Chrome and Microsoft Edge browsers, and it can manage their settings. Addit
Our researchers found the SNet ransomware during a routine inspection of new malware submissions to the VirusTotal platform. Malicious programs that are classed as ransomware operate by encrypting data in order to demand ransoms for its decryption. After we executed a sample of SNet on our testin
Upon investigation, we determined that the "MINISTÉRIO PUBLICO PORTUGAL" email is malspam. This letter is presented as a notification regarding an investigation of the recipient by Portugal's Public Prosecution Service (Ministério Público). The claims made by this spam email are false; their purpo
While investigating untrustworthy sites, our research team discovered the "Microsoft Windows Firewall Warning" scam. Upon inspection, we determined that it is a technical support scam. This scheme falsely claims that the user's computer is infected with malware and requires immediate actions to b