While inspecting suspicious sites, our researchers discovered the SearchToDo browser extension. It is promoted as a tool for creating to-do lists and taking notes on the browser. However, the extension's behavior makes it a browser hijacker. SearchToDo modifies browser settings to endorse the todo
Our inspection of the "Increase Your Mail Box Storage Capacity" email revealed that it is spam. This bogus email claims that the recipient's mailbox has reached its storage capacity and urges them to increase it. By attempting to do so, the recipient is lured into a phishing website that targets l
Naturey New Tab is promoted as an extension that displays nature-themed browser wallpapers. Our research team found this piece of software while inspecting untrustworthy websites. After examining Naturey New Tab, we determined that it is a browser hijacker. This extension modifies browser setting
Our researchers discovered WannaDie ransomware while investigating new malware submissions to the VirusTotal website. Ransomware encrypts data with the goal of demanding that victims pay for the decryption. After we executed a sample of WannaDie on our test system, it encrypted files and appended
Upon scrutinizing this scam, we concluded that it follows the typical pattern of a technical support scam designed to deceive unsuspecting visitors into taking specific actions. Typically, scams like these are employed to extract money or information or distribute malware. Consequently, users are
Kazuar is a backdoor-type malware that has been in use since at least 2017. Throughout the years, several variants of this malicious program have been detected. The latest iteration was discovered in an attack on the Ukrainian defense sector in July 2023. Kazuar is used by Pensive Ursa (also know
Laze is a powerful information stealer capable of stealing a wide range of data. It steals data from Discord, browsers, cryptocurrency wallets, and more. The developer of Laze stealer promotes the malware on Discord. Victims of the Laze malware should eliminate it from the operating system as soon
The Kamran spyware, discovered through a possible watering-hole attack on the Hunza News website, specifically targets Urdu-speaking users in the Gilgit-Baltistan region. Operating as a malicious Android app, Kamran displays legitimate content from the news website while incorporating custom spywa
Our review of the "Password Needs To Be Retained Urgently" email revealed that it is spam. The letter warns that to avoid access to the email account getting restricted, the recipient must retain its password. The scam email with the subject "Retain [recipient's_email_address] Password!" (
The examination of the Inspire Me Tab extension revealed its role as a browser hijacker. The primary objective of the Inspire Me Tab app is to seize control of a browser by manipulating its settings and promoting a fake search engine. Apps of this type should not be trusted and should be removed i