After analyzing malware samples submitted to VirusTotal, we have identified a new ransomware variant known as Ioqa, which is a member of the Djvu ransomware family. The primary objective of Ioqa is to encrypt files on the infected system. As part of the encryption process, Ioqa renames the affecte
Itspeedg[.]com is a rogue webpage discovered by our researchers during a routine investigation of untrustworthy websites. This page is designed to promote dubious/hazardous software and browser notification spam. Furthermore, it can redirect visitors to other (likely unreliable/malicious) sites.
While checking out questionable websites, our research team found the ibuhaughuss[.]com rogue page. It is designed to endorse browser notification spam and redirect visitors to other (likely untrustworthy/harmful) sites. Most users enter webpages like ibuhaughuss[.]com through redirects caused by
While investigating deceptive webpages, our researchers discovered the AdzEater browser extension. It is presented as an adblocker for the YouTube video-hosting platform. However, our analysis revealed that instead of blocking advertisements, this extension displays them. Due to this behavior, Adz
Our research team discovered the hintonjour[.]com rogue page while checking out suspicious sites. It pushes browser notification spam and redirects users to different (likely unreliable/harmful) websites. Most visitors to hintonjour[.]com and similar webpages access them through redirects caused b
Our investigation has revealed that Games Day is a browser extension that utilizes browser hijacking to promote the website games-day.com. Unfortunately, games-day.com is a fake search engine that does not offer unique search results. In most cases, users inadvertently download and install/add bro
After inspecting this "Kuwait Airways" email, we determined that it is spam. This letter requests the recipient to provide any inquiries they have, and it contains a malicious attachment designed to infect systems with Agent Tesla malware. It must be emphasized that this email is fake, and it is
We examined allimpactdesign[.]com and learned that this website uses a deceptive tactic to trick visitors into allowing it to send notifications and redirects them to other suspicious websites. We discovered allimpactdesign[.]com while inspecting pages that use rogue advertising networks.
Our researchers discovered the lax-search.com fake search engine while inspecting browser hijackers. This software typically promotes (via redirects) websites like lax-search.com. These search engines are rarely capable of providing search results, and while lax-search.com can generate them – the
During our investigation of pages utilizing rogue advertising networks, we came across agabreloomr[.]com. This site employs a clickbait tactic to deceive visitors into consenting to receive push notifications, and it also directs users to other websites. We advise users not to visit or trust this