Comscp.co[.]in is a rogue page that we found during a routine investigation of questionable websites. It operates by pushing browser notification spam and redirecting visitors to different (likely unreliable/dangerous) sites. Users primarily enter pages like comscp.co.in through redirects generate
Our research team discovered arkakunaa[.]com during a routine investigation of suspicious websites. This rogue page is designed to promote browser notification spam. Additionally, it can redirect users to other (likely untrustworthy/harmful) sites. Most visitors to arkakunaa[.]com and similar web
Upon thorough examination of abscondslab[.]com, it has been discovered that this website utilizes a deceptive strategy known as clickbait. Abscondslab[.]com employs misleading elements, encompassing textual and visual components, to coax visitors into agreeing to receive its notifications. Consequ
Xret is a ransomware-type program that our researchers discovered while reviewing new submissions to the VirusTotal site. Malware, classed as such, is designed to encrypt data and demand payment for its decryption. On our test system, Xret encrypted files and appended their filenames with a ".XRE
Empermin[.]com is a rogue page that we discovered while inspecting untrustworthy websites. It promotes browser notification spam and redirects users to other (likely unreliable/harmful) sites. Most visitors to empermin[.]com and similar webpages enter them through redirects caused by websites that
After analyzing loloszod[.]xyz, it has come to light that this website employs a deceptive tactic called clickbait. Loloszod[.]xyz uses misleading content, including both text and visual elements, with the intention of persuading visitors to grant notification permissions. Therefore, it is recomme
Upon a detailed analysis of the CucurbitaPepo browser extension, it has become evident that this extension is unreliable. CucurbitaPepo is disseminated through a malicious installer and contains functionalities that include reading data and managing various Chrome browser settings and other compon
StyleServ is a backdoor-type malware. Programs within this classification are designed to essentially prepare a system for further infiltration and/or carry out the second stage of the infection (i.e., download/install additional malicious programs or components). While StyleServ's exact purpose i
Cute Goats Tab, initially marketed as a Chrome extension intended to provide users with charming images of various goat species on their browser's new tab, hides a deceptive character. Unfortunately, it functions as a browser hijacker, actively endorsing track.clickcrystal.com, resulting in unwelc
During a routine investigation of new file submissions to the VirusTotal platform, our research team found the MesaCorp ransomware. This malicious program is based on the Chaos ransomware. MesaCorp is designed to encrypt files and demand ransoms for their decryption. On our test machine, this mal