While investigating new submissions to VirusTotal, our researchers discovered the Clown ransomware. This malicious program is based on the Chaos ransomware. When we executed a sample of Clown (Chaos) ransomware on our testing system, it encrypted files and appended their filenames with a ".clown"
After examining advnotreviews[.]com, we have determined that its main purpose is to deceive visitors into agreeing to receive notifications. We came across this website during an inspection of pages that use suspicious advertising networks, and it is not a site that users intentionally visit.
Our team recently came across a ransomware variant called Tuslamon, which is associated with the Xorist family. We discovered Tuslamon while inspecting samples submitted to VirusTotal. Tuslamon encrypts files and adds the ".tuslamon" extension to their filenames. Additionally, it generates an err
Our researchers discovered the iageandinone[.]com rogue page during a routine investigation of suspicious websites. This webpage is designed to promote browser notification spam; at the time of research, it employed fake CAPTCHA for this purpose. Additionally, the page can redirect visitors elsewh
While investigating untrustworthy sites, our research team found the globalvantnow[.]com rogue webpage. It is designed to promote browser notification spam and redirect visitors to other (likely unreliable/harmful) websites. Users typically access globalvantnow[.]com and similar sites through redi
Our research team discovered the Global Ad Blocker browser extension while checking out suspicious websites. According to its promotional material, Global Ad Blocker is an ad-blocking tool capable of impeding the display of various online advertisements like banners, overlays, video ads, and other
Bestvenadvertising[.]com is a rogue page we discovered while checking out suspicious websites. It operates by pushing spam browser notifications and redirecting users to other (likely unreliable/dangerous) sites. Most visitors access bestvenadvertising[.]com and similar webpages via redirects cau
While investigating dubious websites, our researchers discovered the advbeach[.]com rogue page. It is designed to promote browser notification spam and redirect visitors to other (likely unreliable/harmful) sites. Most users access webpages like advbeach[.]com through redirects caused by websites
After analyzing addsdata[.]com, we have determined that its primary objective is to entice visitors into granting permission to display notifications. Our team encountered addsdata[.]com while investigating websites that employ dubious advertising networks. Users typically access sites like addsda
Upon investigation, our team has determined that inalours[.]com displays a deceptive message to entice visitors to agree to receive notifications. Usually, users open pages like inalours[.]com inadvertently. We discovered inalours[.]com while inspecting websites that use shady advertising networks