SnappyClient is malware delivered through HijackLoader. It is written in C++ and used by cybercriminals to remotely control infected devices (as a remote administration Trojan) and steal data. Once a system is infected, SnappyClient can communicate with a C2 server to receive instructions.
Torg is an information-stealing malware that grabs data from infected devices. It sends stolen information to attackers using an API system. Torg is sold as part of a malware-as-a-service (MaaS) operation. If Torg is detected on a system, it should be removed as soon as possible. Torg targ
Miolab (also known as Nova) is an information stealer targeting macOS users. It is sold to cybercriminals via hacker forums using the Malware-as-a-Service (MaaS) model. Miolab can steal information from cryptocurrency wallet extensions, web browsers, and various managers, and can grab files from
Bear is ransomware from the MedusaLocker family. We have discovered it while examining malware samples uploaded to VirusTotal. When executed, Bear encrypts files and appends its extension. It also changes the desktop wallpaper and creates the "READ_NOTE.html" file, a ransom note. Bear appends the
Our findings indicate that orbitboostlabs[.]com is a site designed to deceive visitors into enabling notifications. If allowed, it can send fraudulent alerts and deceptive offers that promote unreliable websites. Users should avoid visiting orbitboostlabs[.]com and never allow websites of this kin
Our analysis has revealed that metachainedge[.]com is one of the numerous websites designed to trick visitors into agreeing to receive notifications. If this page gets this permission, it can send fake alerts, offers, and other misleading content used to promote untrustworthy websites. It is highl
We have reviewed the email and found it to be a fake notification from an email service provider regarding an "email quota". The scammers behind this email seek to trick recipients into believing they must take quick action. Their goal is to steal personal information via a fake website. Recipient
We have inspected aception[.]com and determined that its purpose is to deceive visitors into agreeing to receive its notifications. This site uses a misleading method to get permission to deliver notifications that can include fake alerts and offers. Users should not trust aception[.]com and close
Our team investigated oaratent[.]com and found that it uses a misleading tactic (clickbait) to trick users into allowing notifications. If permission is granted, the site can send fake alerts and other deceptive messages to promote other potentially malicious websites. It is not trustworthy and sh
Our team has checked boostsummitlabs[.]com and found that it uses a deceptive technique (known as clickbait) to get permission to show notifications. Moreover, if allowed, boostsummitlabs[.]com can send notifications containing fake warnings and similar content. It should not be trusted and should