CycleAfter is a piece of rogue software classified as adware. We discovered this app while inspecting new submissions to VirusTotal. Additionally, it has to be mentioned that CycleAfter is part of the AdLoad malware family. Advertising-supported software (adware) displays ads on visited
While examining websites that use rogue advertising networks, we discovered news-jixuzi[.]cc - a shady page that uses a clickbait technique to trick visitors into allowing it to show notifications. It is uncommon for pages like news-jixuzi[.]cc to be visited intentionally. Also, they often redirec
Paradies clipper is the name of the malware that steals cryptocurrency from victims by replacing wallet addresses saved in the clipboard with addresses belonging to cybercriminals. It is sold on a hacker forum for 50 euros. The developer of the Paradies clipper describes it as a number one crypto
Keepsafetycore[.]com is a rogue website that promotes scams and spam browser notifications. This page can also redirect users to other (likely untrustworthy/malicious) sites. Our researchers discovered keepsafetycore[.]com while inspecting pages that employ rogue advertising networks. It is notew
Our research team found the LiftEffort application during a routine inspection of new submissions to VirusTotal. Our analysis of this app revealed that it operates as adware. Additionally, LiftEffort belongs to the AdLoad malware family. Advertising-supported software may require the bro
After using a fake installer downloaded from a deceptive page, we discovered the PlusApparel application. We found that PlusApparel is a useless application that displays intrusive advertisements. Thus, we classified PlusApparel as adware. PlusApparel displays advertisements that can ope
TripleChop is the name of an application that we discovered after downloading and using a fake installer for the Adobe Flash Player. While analyzing the app, we learned that it generates annoying advertisements. Thus, our team classified TripleChop as adware (advertising-supported software).
Our researchers discovered the "You May Have Viruses On After Visiting An Adult Website" scam while inspecting dubious websites. We found two variants of this scheme - one in English and the other in Portuguese. Like most scams of this kind, "You May Have Viruses On After Visiting An Adult Webs
Ukindwouldm[.]xyz is one of the many deceptive websites that use clickbait techniques to trick visitors into allowing them to show notifications. Also, ukindwouldm[.]xyz redirects visitors to other pages. Our team discovered this page while inspecting illegal movie streaming, torrent, and similar
While inspecting new malware submissions on VirusTotal, our researchers discovered the Lizard Squad ransomware-type program. After we executed a sample of this ransomware on our test system, it encrypted files and modified their titles. The filenames were appended with extensions consisting of fo