Our research team discovered the NetworkOptimizer adware-type application during a routine inspection of new submissions to the VirusTotal website. Adware stands for advertising-supported software. It is designed to generate revenue for its developers by feeding users with unwanted and deceptiv
Mobiledevice-guard[.]com is a rogue website that promotes scams and spam browser notifications. It can also redirect users to other (likely untrustworthy/malicious) sites. Most visitors to pages akin to mobiledevice-guard[.]com access them through redirects generated by websites utilizing rogue a
My Screen Dimmer is a browser extension promoted as a tool that decreases eye strain by dimming the screen/ inverting display colors. After analyzing this piece of software, we determined that it is a browser hijacker. My Screen Dimmer generates redirects and spies on users' browsing activity.
Nagogy Grabber is a highly potent malware with a wide range of capabilities, making it a significant threat in the world of cybersecurity. This malicious software is designed to steal sensitive information. Victims of the Nagogy Grabber should remove the malware from the infected devices immediate
Fewer is the name of a stealer-type malware. This malicious program is designed to extract vulnerable data from infected systems and apps installed on them. The Fewer stealer is promoted by its developers on the Web; hence, how this malware is proliferated may differ depending on the cyber crimin
Rival is ransomware that makes files inaccessible by encrypting them. Also, this malware appends an email address, the victim's ID, and the ".rival" extension to filenames. For instance, Rival renames "1.jpg" to "1.jpg.EMAIL=[recoveryanti@gmail.com]ID=[A7BF40638C0B7184].rival", "2.png" to "2.png.E
After examining this "YouPorn" email, we determined that it is fake. There are several variants of this spam mail, all of which are a twist on sextortion scams. The general through-line is a false claim that the recipient has been identified in sexually explicit content recently uploaded to the Y
DarkGate is a versatile malware toolset. It has been around since at least 2018, with the newest variant emerging in July 2023. The older versions were heavily spread via spam mail and Torrent sites, the latter focusing on Europe, particularly Spanish-speaking users. The latest DarkGate iteration
Our team examined the Mountain Wallpaper browser extension and discovered that it operates as a browser hijacker. Its primary aim is to promote find.pmywebsrc.com, a fake search engine, by modifying the settings of the hijacked browser. Usually, users unknowingly introduce browser hijackers to the
In our assessment of the GypsophilaPaniculata browser extension, we detected troubling activities, including the addition of the "Managed by your organization" feature to Chrome browsers, the management of specific browser elements, and the collection of various data. Our encounter with Gypsophila