While inspecting the Simple Dark Theme browser extension, we noticed that it displays intrusive advertisements. Apps that display ads are categorized as adware. Additionally, we found that Simple Dark Theme can read and change data on visited pages. It is recommended not to trust advertising-supp
Our researchers discovered the updateinfocity[.]com rogue webpage while checking out suspicious websites. It promotes spam browser notifications and redirects visitors to other (likely unreliable/malicious) sites. Users typically access pages like updateinfocity[.]com via websites that use rogue
Yourdesktopdataguard[.]site is a rogue page discovered by our researchers during a routine investigation of dubious websites. This page runs scams, promotes browser notification spam, and redirects visitors to other (likely untrustworthy/malicious) sites. Most users enter webpages like yourdeskto
We inspected this email and learned that it is a scam email created to trick recipients into entering sensitive information on the provided phishing website. It is disguised as a letter from an email service provider regarding low email storage capacity. Scam emails should be marked as spam and de
While investigating new submissions to VirusTotal, our researchers discovered the DATAF LOCKER ransomware-type program. It is part of the Babuk ransomware family. DATAF LOCKER is designed to render data inaccessible by encrypting it and demand ransoms for access recovery - decryption. On our test
WebSurf Guard is advertised as an ad blocker - the most advanced ad blocker for Youtube. However, we tested this browser extension and found that it shows advertisements. Thus, we classified WebSurf Guard as adware. Our team discovered WebSurf Guard on a deceptive web page. WebSurf Guard c
After inspecting the "Missed Call" email, we determined that it is spam operating as a phishing scam. This mail promotes a phishing website that requests visitors to sign in with their email accounts. Hence, by trusting this fake letter - users can lose their email accounts and the content connect
Our team tested the Video Player Pro browser extension and learned that it shows annoying advertisements. Also, it can manage downloads and read and change data on all websites. Apps that generate ads are called adware (advertising-supported software). Users rarely install adware on purpose.
Gqlmcwnhh is ransomware (a ransomware variant from the Snatch family). It encrypts data, appends ".gqlmcwnhh" extension to filenames, and drops the "HOW TO RESTORE YOUR FILES.TXT" file (a ransom note). Our malware researchers discovered Gqlmcwnhh while examining samples submitted to VirusTotal. A
While investigating malware samples submitted to VirusTotal, our team discovered an information stealer called Titan. Malware of this type gathers sensitive data from the infected system and sends it to the attacker. Typically, cybercriminals behind information stealers are financially motivated.