Our team has examined Zollo and found that it is ransomware belonging to the MedusaLocker family. This discovery occurred while inspecting malware samples submitted to VirusTotal. Once a device is infected with Zollo, the ransomware encrypts files, appends its extension to files, changes the deskt
Our analysis has shown that search.serpey.com is a search engine promoted through a browser hijacker called Serpey.com official extension. It is common for search engines of this kind to provide links to questionable pages, include misleading ads, or similar content. Thus, it is advisable to avoid
BeatBanker is Android malware distributed via fake websites disguised as the Google Play Store. It operates as a banking Trojan that hijacks devices and spoofs screens, and as a cryptocurrency miner. If detected on a device, BeatBanker should be removed as soon as possible to prevent financial los
SHub is an information stealer targeting macOS users. It can extract data from web browsers, cryptocurrency wallets, and other applications. Its distribution involves the use of a fake website and the ClickFix technique. If detected on a device, SHub should be eliminated as soon as possible.
Our inspection has revealed that cormislen[.]com is designed to trick visitors into believing they must follow the provided instructions. Its purpose is to lure visitors into permitting it to show notifications. Notifications from cormislen[.]com include fake warnings designed to promote other unr
We checked copetring[.]com and found it is an untrustworthy site that uses clickbait to trick users into allowing notifications. If visitors follow its instructions, they may start receiving unwanted ads, fake alerts, and other misleading notifications that push potentially malicious websites. Thu
We have inspected bestizatic[.]com and discovered that it is one of the untrustworthy websites that use clickbait to get permission to show notifications. If visitors are tricked into following the provided instructions, they can later receive unwanted ads, fake warnings, and similar misleading no
Raptum is ransomware from the MedusaLocker family. Our discovery of Raptum occurred during an inspection of malware samples submitted to VirusTotal. This ransomware encrypts files and appends the ".raptum46" extension (the number in the extension might vary). It also generates a ransom note ("RECO
Our examination of exallambous[.]com has revealed that the page uses clickbait, a deceptive method, to trick visitors into agreeing to get its notifications. If users accept those notifications, they can be lured into scam sites and other unreliable pages. Thus, it is highly advisable not to trust
We have reviewed deshystria[.]com and concluded that it is a deceptive website. It presents a misleading message designed to trick visitors into agreeing to receive its notifications. If allowed, deshystria[.]com can deliver fake warnings and similar messages. Users should not trust deshystria[.]c