While inspecting new submissions to VirusTotal, we discovered the LaserMacroKnowledge application. After analyzing this piece of software, we determined that it is adware. It is pertinent to mention that this app is part of the AdLoad malware family. Adware runs intrusive advertisement c
Masscan is a ransomware-type program designed to encrypt data and demand ransoms for the decryption keys/tools. There are three variants of this malware, referred to as "F", "G", and "R". Masscan appends the encrypted files with an extension differing by a letter between the ransomware versions,
Our team has inspected captchaglow[.]top and found that it is a deceptive website designed to trick visitors into agreeing to receive notifications and redirect them to other untrustworthy pages. We have discovered captchaglow[.]top while visiting sites that use shady advertising networks.
CryptoArch is a ransomware-type program. Malware within this category typically operates by encrypting data and making ransom demands for the decryption tools. After launching CryptoArch on our test machine, we learned that it does not encrypt files. What this ransomware does is wipe the files –
We have tested privatesearches.org and found that it is a shady search engine that can show misleading results. Our team has discovered privatesearches.org after installing a fake Google Docs application downloaded from a deceptive page. The fake Google Docs app promotes privatesearches.org by hi
While checking out dubious websites, our researchers discovered the arachidenews[.]com rogue webpage. During our inspection, we found two variants of this page, both of which employed fake CAPTCHA verification to deceive visitors into enabling spam browser notification delivery. Additionally, arac
Our team has examined this letter and found that it is a phishing email. The fraudsters behind this scam email aim to trick recipients into opening a fake website and providing sensitive information. Thus, it is strongly recommended to ignore this scam (mark the email as spam and delete it).
We have examined editormoney[.]com and learned that it displays a deceptive message to lure visitors into agreeing to receive notifications. Also, editormoney[.]com redirects to other websites. Thus, this page cannot be trusted. Our team discovered editormoney[.]com while inspecting websites that
After inspecting "A Request To Disable Your Email Has Been Received" email, we determined that it operates as a phishing scam. Letters belonging to this campaign target email log-in credentials by falsely claiming that the account is pending deactivation. The spam message with the subject
We have inspected this email and discovered that it is written by scammers who aim to trick recipients into believing that they have won a prize and providing personal information. Thus, we classified this letter as a phishing email. It should be marked as spam and deleted. This scam email