Cumulonimbus has been identified as a malicious extension, exhibiting multiple capabilities that pose significant concerns. This application can activate the "Managed by your organization" feature in Chrome and Edge browsers, oversee apps and themes within browsers, and access various types of inf
While checking out new file submissions to the VirusTotal platform, our researchers found the ConnectivityRepair application. After analyzing this piece of software, we determined that it is adware belonging to the AdLoad malware family. This app is designed to deliver intrusive advertisement ca
Through our evaluation of ActiveAnalyser, we have discovered that the application exhibits bothersome advertisements. Consequently, ActiveAnalyser has been categorized as adware. It is crucial to highlight that such software can be crafted to collect diverse data, and users often install it with
While investigating new file submissions to the VirusTotal website, our research team discovered the Blackoutware ransomware. It is designed to encrypt data and demand ransoms for its decryption. On our test machine, Blackoutware encrypted files and appended their filenames with a ".blo" extensio
We have identified this as a fraudulent scheme designed to obtain sensitive information. Perpetrators behind this scam deploy deceitful SMS and Facebook messages, luring users to open a misleading page and disclose their Facebook login credentials. It is strongly advised to disregard these message
It has been determined that ApteryxOwenii is a malicious extension with several capabilities that raise concerns. This app can enable the "Managed by your organization" feature in Chrome and Edge browsers, manage apps and themes in browsers, and read various information. It is important to note th
Upon evaluating the LegionRelic application, we discovered its operation as adware, showcasing questionable advertisements. Additionally, there exists a potential risk of LegionRelic gaining unauthorized access to and gathering diverse user information. Consequently, it is advisable to uninstall
The ransomware variant dubbed Gyza, which has been discovered during an examination of malware samples on VirusTotal, is linked to the Djvu family. Gyza encrypts files, appends its extension, and delivers a ransom note ("_readme.txt"). Notably, it modifies filenames by adding the ".gyza" extensio
Our researchers discovered the EscapeUpdate app during a routine investigation of new file submissions to the VirusTotal site. After analyzing this piece of software, we learned that it is adware belonging to the AdLoad malware family. EscapeUpdate operates by feeding users with unwanted and dec
Smart Seeker is a rogue browser extension. It makes changes to browser settings in order to promote (through redirects) the smartseeker.info fake search engine. Due to this behavior, Smart Seeker is categorized as a browser hijacker. On our test machine, Smart Seeker reassigned the browser