Cloud 9 JavaScript BotNet refers to a malicious browser extension capable of causing chain infections, which can result in the attackers assuming near-user-level control of the device. This malware is compatible with Google Chrome, Mozilla Firefox, Microsoft Edge, Internet Explorer, and other brow
Fisakalzb is one of the Snatch ransomware variants. It encrypts files to make them inaccessible. Also, Fisakalzb appends the ".fisakalzb" extension to filenames and creates a text file named "HOW TO RESTORE YOUR FILES.TXT". That file contains a ransom note. We discovered Fisakalzb while inspecting
Our team examined datadesktopsecurity[.]online and found that it is an untrustworthy page running the "McAfee - Your PC is infected with 5 viruses!" scam. Additionally, this site wants to show notifications. We discovered datadesktopsecurity[.]online while inspecting web pages that use rogue adver
While investigating untrustworthy sites, our research team discovered the protectwatcher[.]xyz rogue webpage. It promotes online scams, pushes browser notification spam, and redirects visitors to other (likely unreliable and malicious) websites. Users typically access pages like protectwatcher[.]
CleanBlocker is a rogue browser extension that our researchers discovered while inspecting deceptive websites. This piece of software is presented as an adblocker that can stop website tracking and block various advertisements. However, our analysis revealed that CleanBlocker's operates oppositely
While testing the Web Video Player browser extension, we found that it shows intrusive advertisements, can read and change data on all websites, and display notifications. We discovered Web Video Player on a deceptive website. Since this app shows ads, we classified it as adware. Web Video
"Movies" is a piece of advertising-supported software (adware) belonging to the ChromeLoader malware family. This software operates by running intrusive advertisement campaigns. Furthermore, ChromeLoader apps are known to install multiple unwanted/malicious extensions on Chrome browsers. Hence, i
While checking out new malware submissions to VirusTotal, our research team found the Chily ransomware. This malicious program is designed to encrypt data and demand ransoms for decryption. Once we executed a sample of Chily on our test machine, it began encrypting files and altered their filenam
After investigating this email, we found that it is a fake letter from an email service provider. It is created by scammers who aim to trick recipients into providing sensitive information on a phishing website. This email must be ignored. Scammers behind this email attempt to trick recipi
After inspecting the "Annual Salary Adjustment" email, we determined that it is spam. This mail operates as a phishing scam. It aims to deceive recipients into disclosing their email log-in credentials by promoting a fake file-sharing website that requests this information for identity confirmatio