Our research team has recently identified a new member of the Djvu ransomware family called Neqp. Neqp is a malicious software, commonly known as ransomware, that encrypts files, making them inaccessible to victims. Our discovery of Neqp was made during the analysis of samples on the VirusTotal we
Our researchers discovered the etingplansfo[.]buzz rogue webpage during a routine inspection of untrustworthy sites. It is designed to endorse browser notification spam and redirect visitors to different (likely unreliable or malicious) websites. Users primarily enter pages like etingplansfo[.]bu
Datingmint[.]top is a rogue page that our research team discovered while inspecting suspicious sites. It operates by promoting browser notification spam and redirecting visitors to other (likely unreliable/dangerous) websites. Most users access webpages like datingmint[.]top via redirects generate
Thx is ransomware that falls under the Dharma family. Its main objective is to encrypt data. As part of the encryption process, Thx adds the victim's ID, cluster1@outlook.sa email address, and the ".thx" extension to the original filenames. For example, a file named "1.jpg" would be renamed to "1
Neon, a variant of the Djvu ransomware family, is ransomware that encrypts files on the victim's computer and demands a ransom payment in exchange for the decryption tools. Our team came across Neon during our examination of recently submitted malware samples on VirusTotal. It is important to be a
During our examination of samples on VirusTotal, our team recently discovered a variant of the Djvu ransomware family named Nerz. Nerz encrypts data and appends the ".nerz" extension to the files it affects. Once the encryption process is complete, the ransomware leaves a ransom note titled "_read
During our examination of juble[.]click, we discovered that it employs a deceptive strategy to persuade visitors into granting it permission to send notifications. Moreover, juble[.]click has the potential to redirect visitors to dubious websites. We encountered juble[.]click while investigating p
Dev-defense[.]com is a rogue webpage designed to promote dubious content and browser notification spam. It is also capable of redirecting visitors to different (likely unreliable/hazardous) sites. Users primarily access pages like dev-defense[.]com through redirects generated by websites that emp
NBR is ransomware belonging to the Dharma family. The purpose of NBR is to encrypt data. Additionally, this ransomware appends the victim's ID, harry023m@aol.com email address, and the ".NBR" extension to filenames. For instance, it renames "1.jpg" to "1.jpg.id-1E857D00.[Harry023m@aol.com].NBR", "
Eukeuktyouex[.]xyz is a rogue page that we discovered while inspecting suspect websites. This webpage promotes browser notification spam and redirects users to different (likely unreliable/dangerous) sites. Visitors to eukeuktyouex[.]xyz and similar pages access them primarily through redirects g