Yourdesktopdataguard[.]site is a rogue page discovered by our researchers during a routine investigation of dubious websites. This page runs scams, promotes browser notification spam, and redirects visitors to other (likely untrustworthy/malicious) sites. Most users enter webpages like yourdeskto
We inspected this email and learned that it is a scam email created to trick recipients into entering sensitive information on the provided phishing website. It is disguised as a letter from an email service provider regarding low email storage capacity. Scam emails should be marked as spam and de
While investigating new submissions to VirusTotal, our researchers discovered the DATAF LOCKER ransomware-type program. It is part of the Babuk ransomware family. DATAF LOCKER is designed to render data inaccessible by encrypting it and demand ransoms for access recovery - decryption. On our test
WebSurf Guard is advertised as an ad blocker - the most advanced ad blocker for Youtube. However, we tested this browser extension and found that it shows advertisements. Thus, we classified WebSurf Guard as adware. Our team discovered WebSurf Guard on a deceptive web page. WebSurf Guard c
After inspecting the "Missed Call" email, we determined that it is spam operating as a phishing scam. This mail promotes a phishing website that requests visitors to sign in with their email accounts. Hence, by trusting this fake letter - users can lose their email accounts and the content connect
Our team tested the Video Player Pro browser extension and learned that it shows annoying advertisements. Also, it can manage downloads and read and change data on all websites. Apps that generate ads are called adware (advertising-supported software). Users rarely install adware on purpose.
Gqlmcwnhh is ransomware (a ransomware variant from the Snatch family). It encrypts data, appends ".gqlmcwnhh" extension to filenames, and drops the "HOW TO RESTORE YOUR FILES.TXT" file (a ransom note). Our malware researchers discovered Gqlmcwnhh while examining samples submitted to VirusTotal. A
While investigating malware samples submitted to VirusTotal, our team discovered an information stealer called Titan. Malware of this type gathers sensitive data from the infected system and sends it to the attacker. Typically, cybercriminals behind information stealers are financially motivated.
While checking out deceptive websites, our researchers discovered the Tab Session browser extension. It is presented as a productivity improvement tool that promises easy access and navigation on browsers. However, Tab Session operates as adware. This browser extension runs intrusive ad campaigns
XStealer is a piece of malicious software designed to steal data. This stealer malware can exfiltrate browsing and user information. Therefore, XStealer infections endanger victims' privacy and safety. XStealer, like many stealers, begins its operation by gathering relevant device data (e.