After inspecting "A Request To Disable Your Email Has Been Received" email, we determined that it operates as a phishing scam. Letters belonging to this campaign target email log-in credentials by falsely claiming that the account is pending deactivation. The spam message with the subject
We have inspected this email and discovered that it is written by scammers who aim to trick recipients into believing that they have won a prize and providing personal information. Thus, we classified this letter as a phishing email. It should be marked as spam and deleted. This scam email
Bjrtziwsgw is one of the ransomware variants belonging to the Snatch family. Our malware researchers discovered Bjrtziwsgw while examining samples submitted to VirusTotal. Bjrtziwsgw encrypts files, appends the ".bjrtziwsgw" extension to filenames of encrypted files, and drops a ransom note (the "
While reviewing new submissions to VirusTotal, our research team discovered the WorldWideProjector application. After analyzing this app, we learned that it operates as adware and belongs to the AdLoad malware family. WorldWideProjector displays ads and may have additional undesirable functional
Viotto is a malicious program classified as a keylogger. The primary functionality of malware within this classification is to log keystrokes (i.e., record keyboard input). However, Viotto has additional spyware/data-stealing capabilities. At the time of research, there were two variants of this p
While checking out suspicious sites that endorse software, our research team discovered the Files Download Enhancer browser extension. It is presented as a download management tool. However, our analysis of this browser extension revealed that it operates as advertising-supported software (adware)
Our research team found the menispirfly[.]com rogue site during a routine inspection of untrustworthy webpages. It is designed to promote browser notification spam, and at the time of research – menispirfly[.]com did so by employing fake CAPTCHA verification. Additionally, this page can redirect v
We have tested goodsearchez.com and found that it is a fake search engine that does not generate unique results. Typically, fake and other untrustworthy search engines are promoted mainly via browser hijackers. Our team also found that goodsearchez.com is promoted via a fake Google Docs extension.
CIA ransomware is a type of malware designed to encrypt data and make ransom demands for the decryption tools. There are two variants of this ransomware. Typically, programs of this kind alter the filenames of encrypted files; however, that is not the case with either of the CIA ransomware version
Our research team discovered yet another malicious program based on the Chaos ransomware titled Teng Snake. Malware within this classification operates by encrypting data and demanding payment for the decryption tools. On our test machine, Teng Snake encrypted files and changed their filenames. O