During a routine investigation of untrustworthy websites, our research team discovered the aspectsofc[.]hair rogue page. It is designed to load deceptive material, promote browser notification spam, and cause redirects to other (likely dubious/malicious) sites. Users typically access aspectsofc[.
After examining the 18plusvideos[.]me page, we found that its purpose is to get permission to show notifications. It uses a clickbait technique to trick visitors into granting that permission. Additionally, 18plusvideos[.]me can redirect visitors to a similar web page. Typically, visitors open suc
Basitrackone[.]space is a website that shows a deceptive message to trick visitors into allowing it to show notifications and redirects them to other websites. Our team discovered this site while inspecting pages that use rogue advertising networks. Like all the other pages of this type, basitrack
The Internet is rife with deceptive and malicious content. While inspecting untrustworthy websites, our research team found the buyfunllc[.]com rogue page. It promotes browser notification spam and redirects visitors to different (likely dubious/harmful) sites. Most users enter webpages like buyf
While looking through new submissions to VirusTotal, our researchers discovered the Colambia ransomware-type program. This piece of malicious software belongs to the ZEPPELIN ransomware family. Once we executed a sample of Colambia on our test machine, it began encrypting files and appended their
During a routine investigation of new submissions to VirusTotal, we discovered the ExpandedSystem rogue application. After analyzing this app, we learned that it operates as advertising-supported software (adware) and belongs to the AdLoad malware family. Adware stands for advertising-su
German0[.]xyz is a website that uses deception to trick visitors into agreeing to receive notifications from it. Also, it redirects visitors to scam websites. Our team discovered german0[.]xyz while examining illegal movie streaming pages, torrent sites, and similar websites. German0[.]xyz
While inspecting questionable download webpages, our research team discovered a rogue browser extension called "darkscreen". It is promoted as a tool capable of enabling dark mode for simple design websites. However, our analysis of darkscreen revealed that it operates as advertising-supported sof
We discovered entry-system[.]xyz after clicking on a link received via email. While examining the entry-system[.]xyz, we learned that it is a deceptive website designed to trick visitors into allowing it to display notifications. We also found that entry-system[.]xyz can redirect visitors to shady
While analyzing malware samples submitted to VirusTotal, we came across Ransomcrow ransomware. Like any other ransomware, Ransomcrow encrypts files and demands payment in exchange for a decryption tool. Also, it appends the ".encrypted" extension to filenames, creates the "readme.txt" file contain