"Virus/Malware Infections Have Been Recognized" is a technical support scam that our researchers found while inspecting rogue websites. This scheme aims to deceive users into calling fake Microsoft Support by claiming that their device is infected. The "Virus/Malware Infections Have Been R
Our examination of this "Adobe Invoice" email revealed that it is spam. The letter is presented as an invoice for a year-long subscription to Adobe. It is the lure used to trick recipients into a callback scam. Oftentimes, the goal of such schemes is to deceive victims into disclosing private data
PsittacosaurusMongoliensis is a malicious browser extension discovered by our researchers during a routine investigation of dubious websites. It is worth mentioning that the type of installation setup used to promote this extension might also be bundled with adware, browser hijackers, PUAs, and ot
DiprotodonOptatum is a malicious browser extension that our research team discovered in an installer endorsed on a deceptive website. This piece of software is capable of manipulating browsers and extracting sensitive data from them. It is noteworthy that installation setups carrying software lik
Our research team discovered the "Ransomware EXE.01092-1_Alert" technical support scam during a routine inspection of suspect websites. The scheme warns users of fake system infections to deceive them into calling a bogus support line. It is noteworthy that in some cases the "Ransomware EXE.01092
While investigating deceptive websites, our researchers discovered the "Trojan:Slocker" technical support scam. It warns that the visitor's device has been infected with trojan/ransomware and urges them to call the provided helpline. Note that this scheme may be preceded by the "Ransomware EXE.010
Zpww is a ransomware-type program that our research team discovered while investigating malware. It belongs to the Djvu ransomware family. Zpww operates by encrypting data and demanding ransoms for its decryption. On our testing system, Zpww encrypted files and altered their filenames. Original t
During routine malware analysis, our research team discovered the Zput ransomware. This malicious program is part of the Djvu ransomware family. Zput is designed to encrypt files and demand ransoms for their decryption. On our test machine, this ransomware appended the names of encrypted files wi
While investigating malware samples, our research team discovered yet another Djvu ransomware called Zpas. Malware within this classification is designed to encrypt data and demand ransoms for its decryption. After we executed a sample of Zpas on our testing system, this ransomware encrypted file
Hokarsoud[.]com is a rogue webpage designed to push browser notification spam and lead users to other (likely unreliable/dangerous) sites. Most visitors to hokarsoud[.]com and pages akin to it access them through redirects generated by websites that utilize rogue advertising networks. Our researc