While investigating deceptive websites, our researchers discovered the "Trojan:Slocker" technical support scam. It warns that the visitor's device has been infected with trojan/ransomware and urges them to call the provided helpline. Note that this scheme may be preceded by the "Ransomware EXE.010
Zpww is a ransomware-type program that our research team discovered while investigating malware. It belongs to the Djvu ransomware family. Zpww operates by encrypting data and demanding ransoms for its decryption. On our testing system, Zpww encrypted files and altered their filenames. Original t
During routine malware analysis, our research team discovered the Zput ransomware. This malicious program is part of the Djvu ransomware family. Zput is designed to encrypt files and demand ransoms for their decryption. On our test machine, this ransomware appended the names of encrypted files wi
While investigating malware samples, our research team discovered yet another Djvu ransomware called Zpas. Malware within this classification is designed to encrypt data and demand ransoms for its decryption. After we executed a sample of Zpas on our testing system, this ransomware encrypted file
Hokarsoud[.]com is a rogue webpage designed to push browser notification spam and lead users to other (likely unreliable/dangerous) sites. Most visitors to hokarsoud[.]com and pages akin to it access them through redirects generated by websites that utilize rogue advertising networks. Our researc
Web Ace Tab is a rogue browser extension that our research team found during a routine inspection of unreliable websites. While this piece of software promises to display abstract browser wallpapers, it also modifies certain settings to promote (via redirects) the webacetab.com fake search engine.
Our examination of the "Security Information" email revealed that it is spam promoting a phishing scam. This mail falsely claims that the recipient's email account password is about to expire, thus tricking them into disclosing this sensitive information. The spam email with the subject "S
The "You Have Received Attached Document" spam email is disguised as a notification regarding a sent file. The alleged attachment is a document concerning a contract. This phishing mail aims to obtain recipients' email account log-in credentials. The spam email with the subject "CONTRACT A
Mad Cat is a ransomware-type program discovered by our researchers during a routine inspection of new submissions to the VirusTotal platform. Malware within this classification operates by encrypting files to demand payment for its decryption. On our test machine, Mad Cat encrypted files and alte
It is common for scams promoted through spam campaigns to take advantage of ongoing crises, and this "PCRF" email is no exception. This mail's backdrop is the 2023 Israel–Hamas war, and the email is presented as a donation request from Palestine Children's Relief Fund (PCRF). It must be stressed