Warp is the name of a powerful GO-based information-stealing malware that drops an Avast anti-rootkit driver and exfiltrates stolen data via Telegram. It poses a serious threat to system security and privacy. Thus, victims should remove it from infected systems as soon as possible. Warp st
During the analysis of samples submitted to VirusTotal, our malware researchers uncovered Alphaware, a ransomware primarily employed for monetary extortion. This malicious software encrypts files, rendering them inaccessible until a ransom is paid. Furthermore, Alphaware appends the ".Alphaware"
In our examination of the AlphaLegend application, we observed intrusive advertising behavior, categorizing it as adware. Adware is often distributed through questionable and deceptive methods, making it possible for unsuspecting users to download and install it unintentionally. AlphaLeg
Webdespardllc[.]com is a rogue page we discovered while inspecting dubious websites. It operates by pushing spam browser notifications and redirecting users to different (likely unreliable/malicious) sites. Users primarily access webpages like webdespardllc[.]com through redirects generated by we
While investigating suspect websites, our research team found the Cars – New Tab browser extension. It is presented as a tool that displays automobile-themed browser wallpapers. After testing this extension, we determined that it is a browser hijacker. Cars – New Tab changes browser settings to pr
CosmoLoop is a rogue application that our research team discovered while reviewing new submissions to the VirusTotal site. This app operates as advertising-supported software (adware). It is pertinent to mention that CosmoLoop belongs to the AdLoad malware family. Adware is designed to e
We discovered the Night Reading for All browser extension while inspecting scam websites. This piece of software supposedly operates as a dark-mode tool for websites. However, after examining this browser extension, we determined that it is advertising-supported software (adware). Adware d
Our researchers discovered the "All Image Download" browser extension while investigating deceptive websites. This extension supposedly allows users to easily download all of the images displayed on a webpage. However, our analysis revealed that All Image Download operates as adware. It delivers
Our inspection of the "Document Received" email revealed that it is spam. This fake letter is presented as a notification regarding a document sent to the recipient via Microsoft SharePoint. This spam promotes a phishing website disguised as SharePoint, which targets email account log-in credentia
After conducting our investigation, our team identified captchawizard[.]top as an untrustworthy website that uses deceptive methods to trick visitors into granting permission for notifications. It is common for users to come across websites like captchawizard[.]top inadvertently. We discovered it