During our analysis of Jywd, we identified it as a variant of the Djvu ransomware family. Jywd works by encrypting data and appending the ".jywd" extension to the filenames of the affected files while also creating a ransom note in the form of a "_readme.txt" file. Our team discovered Jywd during
During our analysis of malware samples submitted to the VirusTotal page, we came across a type of ransomware dubbed Jyos. Further investigation revealed that Jyos belongs to the Djvu ransomware family. The primary goal of this ransomware is to encrypt files. Jyos also modifies file names by addin
While testing Robo Tab, our team discovered that this browser extension operates as a browser hijacker. The purpose of Robo Tab is to promote search.robo-tab.com (a fake search engine) by changing the settings of a web browser. Additionally, it may gather various data. Thus, it is advisable not to
While examining Beach Browser, we discovered that it is a browser extension designed to promote a shady search engine (search.beach-browser.com). Beach Browser promotes search.beach-browser.com by hijacking a web browser (by changing its settings). Users should not trust this application.
Our research team found the Online Video Platforms browser extension while investigating suspicious sites. It is promoted as an easy-access tool to popular online platforms. However, our inspection of this piece of software revealed that it is a browser hijacker. Online Video Platforms operates by
Our researchers discovered the Cosmic browser extension while inspecting untrustworthy websites. After investigating this extension, we determined that it is a browser hijacker. Cosmic makes alterations to browser settings in order to promote the search.cosmic-tab.com fake search engine. B
Our inspection of the "Max-Lotto" email revealed that it is a phishing scam. This spam letter states that the recipient has been selected as the "Max-Lotto" lottery winner. These false claims are used to trick users into disclosing their personally identifiable information. It must be stressed th
Authenticpcedge[.]com is a rogue page that our researchers discovered while investigating suspicious sites. It is designed to promote deceptive content and push browser notification spam. Authenticpcedge[.]com can also redirect visitors to other (likely unreliable/dangerous) webpages. Users typic
My Weather is a browser extension that promises easy access to weather forecasts. After inspecting this piece of software, we determined that it operates as a browser hijacker. My Weather modifies browser settings to promote (via redirects) the search.bestweatherextension.com fake search engine.
During our examination of pages that use rogue advertising networks, we came across linkforcaptcha[.]top. This website uses a clickbait technique to deceive visitors into consenting to receive notifications. Moreover, linkforcaptcha[.]top may redirect visitors to other untrustworthy sites. Therefo