Our researchers discovered the bguhnh[.]com rogue webpage during a routine investigation of dubious websites. It operates by promoting browser notification spam and redirecting visitors to other (likely unreliable/malicious) sites. Users typically enter pages like bguhnh[.]com via redirects gener
While investigating suspect websites, our researchers found the foryoupromo[.]com rogue page. It is designed to endorse scams and browser notification spam. This webpage can also redirect users elsewhere (likely untrustworthy/malicious sites). Most visitors to foryoupromo[.]com and similar pages
PixBankBot is an Android banking Trojan that exploits the Pix instant payment platform. This Trojan specifically targets Brazilian banks and employs an ATS (Automated Transfer System) framework for its operations. It should be removed from infected devices as soon as possible to avoid potential ha
Our research team discovered the glam-celebrity-news[.]com rogue site while inspecting untrustworthy websites. This page operates by pushing browser notification spam and redirecting visitors to different (likely suspicious/malicious) sites. Users typically access glam-celebrity-news[.]com and we
Psoufauh[.]com is among the numerous websites that utilize deceptive tactics to deceive visitors into granting permission to display notifications. Furthermore, while navigating psoufauh[.]com, users may encounter redirections to unreliable websites. Our team discovered psoufauh[.]com while examin
Centrumrocks[.]com is the URL of a rogue page that our researchers discovered while investigating suspicious websites. It is designed to promote dubious content and spam browser notifications. Additionally, this page can redirect visitors to other (likely unreliable/harmful) websites. Most users
DogeRAT is an Android malware known as a Remote Access Trojan (RAT) that operates under an open-source framework. It masquerades as a legitimate application and is being circulated through social media platforms and messaging apps. Threat actors behind DogeRAT focus on a broad range of industries
While examining malware samples on VirusTotal, we encountered Werz, a variant of the Djvu ransomware family. This particular ransomware encrypts files and modifies their original filenames by appending the ".werz" extension. For example, encrypted files that were originally named "1.jpg" would be
Our team has recently identified a new member of the Djvu ransomware family known as Weon. Weon is malicious software (ransomware) that encrypts files, rendering them inaccessible to users. We discovered Weon while analyzing samples on the VirusTotal website. It is important to be aware that Weon
During our review of websites utilizing questionable advertising networks, we encountered onegadsdesign[.]com, one of the numerous sites employing deceptive tactics to persuade visitors to enable browser notifications. It is important to note that while browsing onegadsdesign[.]com, users may also