During our investigation into dubious websites that falsely indicate outdated software, we came across RecordConsole, which upon downloading and installation, proved to be of no practical use and instead displayed irritating advertisements. For this reason, our team classified RecordConsole as a
While inspecting suspicious sites, our researchers discovered the Ultimate Files Downloader browser extension. It is presented as a download management tool. However, our inspection of Ultimate Files Downloader revealed that it operates as advertising-supported software (adware). Adware is
Our research team discovered the Tab Manager browser extension while inspecting deceptive websites. This piece of software supposedly has the ability to close all browser tabs at once, regardless of their type (e.g., incognito, pinned, etc.). However, our analysis of this extension revealed that i
We discovered the suggestonlineweb.com fake search engine while investigating browser-hijacking software. Websites of this kind are typically incapable of providing search results, and while suggestonlineweb.com can – they are irrelevant and include sponsored and potentially harmful content. In m
While examining the ChatSAI application, our team found that it functions as a browser hijacker. The purpose of this app is to force users to use chatsai.nextjourneyai.com - a fake search engine. ChatSAI achieves this by modifying the settings of a web browser. It is worth noting that users tend t
While investigating suspicious websites, our research team discovered the "McAfee - A Virus Has Been Found On Your PC!" scam. This deceptive content is disguised as the McAfee anti-virus, and it must be stressed that the actual McAfee Corp. is not associated with this scheme. "McAfee - A Virus Ha
Tangem is a ransomware-type program discovered by our researchers during a routine investigation of new submissions to VirusTotal. This malicious program is part of the MedusaLocker ransomware family, and it is designed to encrypt data and demand ransoms for decryption. On our test machine, Tange
Domino is a type of malware that has been utilized by cybercriminals as early as late February 2023 to disseminate either the Project Nemesis information stealer or Cobalt Strike. The perpetrators achieve their objectives through the use of a Domino backdoor and loader. The Domino campaign is prop
RTM Locker (also known as Read The Manual Locker) is ransomware that encrypts files, changes the desktop wallpaper, drops the "How To Restore Your Files.txt" file containing a ransom note, and appends 64 random characters to the filenames of all encrypted files. It is known that RTM Locker is offe
Chameleon is the name of a trojan targeting Android Operating Systems (OSes). This malware is capable of stealing information (with a particular emphasis on banking data) and performing various other malicious activities. Chameleon has been around since at least January 2023 and, at the time of w