It has been identified that Loqw is ransomware belonging to the Djvu family. Loqw is designed to encrypt files and change their filenames (append the ".loqw" extension). Also, this ransomware creates a ransom note ("_readme.txt"). Since loqw belongs to the Djvu family, it may be distributed with i
Our research team discovered the notifonline[.]com rogue page while reviewing questionable websites. It is designed to promote browser notification spam and redirect users to other (likely unreliable/hazardous) sites. Visitors to notifonline[.]com and similar webpages access them via redirects ge
Upon inspection, we learned that "Final Price" is a spam email promoting a phishing scam. The recipient is lured into disclosing their email account log-in credentials by false claims regarding final prices for listed items. The scam email with the subject "New Order" (may vary) informs th
"PUA:Win32/Presenoker" is a detection name used by multiple security engines/tools, including the Microsoft Defender Antivirus, as an identifier for Potentially Unwanted Applications (PUAs). Software within this category typically appears genuine and useful yet seldom operates as promised by its
The Prysmax (also known as Valkyrie) malware is a harmful program crafted to extract data and exert complete control over devices, contingent on the chosen plan. The originator of Prysmax provides three purchasing alternatives: a stealer for €49.99, a Remote Administration Trojan (RAT) for €69.99,
During our analysis, it has come to our attention that GorillaBeringei is an untrustworthy application capable of enabling the "Managed by your organization" feature in Chrome and Edge web browsers. Additionally, GorillaBeringei can read data on all websites and manage themes and extensions within
Our research team found forgeart[.]top during a routine inspection of untrustworthy websites. Upon review, we determined that this rogue page promotes browser notification spam and redirects users to different (likely dubious/malicious) sites. Most visitors to forgeart[.]top and webpages akin to
"Mail Client Manual Settings" is a spam email; we determined that it promotes a phishing scam. This letter is presented as an automated notification warning that the recipient's email will be deactivated. By attempting to cancel the supposed account deletion, users will unintentionally reveal thei
After a thorough review, it has been observed that this email is a scam, cleverly disguised as a notification from an email service provider regarding policy changes. The scammers orchestrating this scheme intend to deceive recipients into revealing personal information. Such deceptive emails are
NPhoneRing is the name of a rogue application that our research team discovered in an installer promoted on a deceptive webpage. This piece of software is classed as a PUA (Potentially Unwanted Application). We have not found any "official" promotional material for NPhoneRing; hence, it is unknow