While inspecting deceptive websites, our research team discovered a page promoting an installer containing the MetAI assistant browser extension. It is endorsed as a tool that allows users to employ "OpenAI" (likely the ChatGPT chatbot developed by OpenAI) on the Facebook social networking platfor
Our researchers discovered the Qwik Search browser extension while inspecting rogue websites. This software promises to improve the Web searching experience by allowing easy access to popular search engines. However, our analysis of Qwik Search revealed that it is a browser hijacker. This extensio
While investigating new submissions to VirusTotal, our research team discovered the ActivityCache app. After inspecting this piece of software, we determined that it operates as adware. Additionally, we learned that this application is part of the AdLoad malware family. Adware stands for
Our inspection of the "ACCOUNT SHUT-DOWN" email revealed that it is spam. This letter states that the recipient's email account will be shut down per their request. This spam mail operates as a phishing scam and promotes a fake email sign-in page that records the passwords entered into it.
While inspecting the Never Forget Tab browser extension, we found that it is a browser hijacker designed to promote two fake search engines: find.eonenavigate.com and neverforgettab.com. This app promotes them by changing the web browser's settings. It is strongly recommended not to trust the Neve
While examining a deceptive website instructing visitors to update their Flash Player, our team came across a browser extension called Simple Ad Blocker. However, upon adding it, we discovered that it actually functions as adware. This app displays intrusive advertisements. Therefore, we advise ag
Upon examining this letter, we have determined that it is a fraudulent email composed by scammers with the intention of tricking recipients into divulging sensitive information. The email is disguised as a message from an email service provider and includes a hyperlink to a phishing website. It is
While examining malware samples submitted to VirusTotal, we discovered a ransomware variant based on Chaos ransomware dubbed SkullLocker. This ransomware encrypts files, creates the "read_it.txt" file (a ransom note), and appends the ".skull" extension to filenames. An example of how SkullLocker
Blacksnaketeam is a ransomware-type program designed to encrypt data and demand payment for its decryption. When we executed a sample of Blacksnaketeam on our test machine, it began encrypting files. The filenames of affected files were appended with a ".pay2unlock" extension. For example, a file
Our team has examined factor1right[.]com and found that this site offers to download a malicious file and asks for permission to send notifications. We discovered factor1right[.]com while inspecting pages that use shady advertising networks. Usually, users access sites like factor1right[.]com inad