During our examination of the GallusGallus browser extension, we uncovered concerning actions such as enabling the "Managed by your organization" functionality in Chrome browsers, controlling specific browser components, and gathering data. Our interaction with GallusGallus took place while invest
While inspecting suspect sites, our researchers discovered the shielding-fordevice[.]com rogue webpage. It has several variants that promote scams and browser notification spam. This page can also redirect users to other (likely dubious/malicious) websites. Most visitors to webpages like shieldin
Our researchers found the mobileunderguard[.]com rogue webpage while checking suspicious sites. This page is designed to run scams and promote browser notification spam. Additionally, it can redirect visitors to different (likely unreliable/dangerous) websites. Most users access webpages like mob
Our research team discovered the NetworkOptimizer adware-type application during a routine inspection of new submissions to the VirusTotal website. Adware stands for advertising-supported software. It is designed to generate revenue for its developers by feeding users with unwanted and deceptiv
Mobiledevice-guard[.]com is a rogue website that promotes scams and spam browser notifications. It can also redirect users to other (likely untrustworthy/malicious) sites. Most visitors to pages akin to mobiledevice-guard[.]com access them through redirects generated by websites utilizing rogue a
My Screen Dimmer is a browser extension promoted as a tool that decreases eye strain by dimming the screen/ inverting display colors. After analyzing this piece of software, we determined that it is a browser hijacker. My Screen Dimmer generates redirects and spies on users' browsing activity.
Nagogy Grabber is a highly potent malware with a wide range of capabilities, making it a significant threat in the world of cybersecurity. This malicious software is designed to steal sensitive information. Victims of the Nagogy Grabber should remove the malware from the infected devices immediate
Fewer is the name of a stealer-type malware. This malicious program is designed to extract vulnerable data from infected systems and apps installed on them. The Fewer stealer is promoted by its developers on the Web; hence, how this malware is proliferated may differ depending on the cyber crimin
Rival is ransomware that makes files inaccessible by encrypting them. Also, this malware appends an email address, the victim's ID, and the ".rival" extension to filenames. For instance, Rival renames "1.jpg" to "1.jpg.EMAIL=[recoveryanti@gmail.com]ID=[A7BF40638C0B7184].rival", "2.png" to "2.png.E
After examining this "YouPorn" email, we determined that it is fake. There are several variants of this spam mail, all of which are a twist on sextortion scams. The general through-line is a false claim that the recipient has been identified in sexually explicit content recently uploaded to the Y