UnlimitedBolt is one of the untrustworthy applications designed to generate annoying advertisements. Software that shows ads is called adware (or advertising-supported software). Most adware is promoted and distributed using questionable (often deceptive) methods. Our team discovered UnlimitedBo
While examining suspicious pages, we found another page of this kind running a pop-up scam. This site uses a scare tactic to distribute malware. Its purpose is to lure unsuspecting visitors into believing that their computers are infected and executing a downloaded malicious file. After in
Our research team found the protectyour-device[.]com rogue webpage while checking out untrustworthy sites. This page promotes deceptive material, pushes spam browser notifications, and redirects visitors to other (likely dubious/malicious) websites. Most users enter pages like protectyour-device[
IndexerPortal is a piece of rogue software that our research team discovered while investigating new submissions to VirusTotal. After inspecting this app, we determined that it is adware belonging to the AdLoad malware family. IndexerPortal is designed to run intrusive ad campaigns, and it may h
While inspecting defenderfocus[.]xyz, we found that it runs the "McAfee - Your PC is infected with 5 viruses!" scam and wants to deliver untrustworthy notifications. This page should be ignored and never allowed to show notifications. Our team discovered defenderfocus[.]xyz while analyzing pages t
While inspecting dubious webpages, our researchers discovered the vipcaptcha[.]live rogue site. It promotes browser notification spam and can cause redirects to different (likely deceptive/hazardous) websites. Users are most commonly redirected to pages like vipcaptcha[.]live by sites that use rog
Our research team discovered the Bulwark ransomware during a routine inspection of new submissions to VirusTotal. This malicious program belongs to the MedusaLocker ransomware family. We launched a sample of Bulwark on our test machine, it encrypted files and appended their filenames with a ".bul
While testing multi-searches.com, our team discovered that it is a search engine that does not generate its own results (it shows results generated by another search engine). Therefore, we classified multi-searches.com as a fake search engine. Typically, search engines of this type are promoted vi
While examining the ViewOrigin application, we learned that it shows annoying advertisements can read sensitive information. Apps whose purpose is to display advertisements are called advertising-supported apps (or adware). We discovered the ViewOrigin application on a deceptive web page claimin
We discovered a new Dharma ransomware variant called Cyberpunk. It encrypts files, appends the victim's ID, cyberpunk@onionmail.org email address, and ".CYBER" extension to filenames, and provides two ransom notes. Cyberpunk provides one ransom note in a pop-up window and another in the "CYBER.txt