While looking through untrustworthy websites, our research team found the robustwebsecurity[.]com rogue page. It operates by promoting scams, pushing browser notification spam, and redirecting visitors to other (likely unreliable/dangerous) sites. Webpages like robustwebsecurity[.]com are typical
Ads Skipping Over is a rogue browser extension that our researchers found while inspecting deceptive software-promoting websites. This extension is endorsed as a Youtube advertisement ad-blocker/ad-skipper. However, after analyzing Ads Skipping Over, we determined that it operates as advertising-s
Magnus is ransomware that our team has discovered while examining malware samples submitted to the VirusTotal page. We found that Magnus encrypts files, appends four random characters to filenames (its extension), changes the desktop wallpaper, and creates the "READMEEEEEE!!!!.txt" file containing
While inspecting deceptive websites offering to update the Adobe Flash Player, our team discovered an application named FrequencyPlatform. During the analysis, we found that FrequencyPlatform generates unwanted advertisements. Thus, it has been concluded that FrequencyPlatform is adware.
Info is the name of ransomware belonging to the Dharma ransomware family. Our team has discovered it while inspecting malware samples submitted to VirusTotal. Info encrypts data, appends the victim's ID, infobase@onionmail.com email address, and ".info" extension to filenames, and generates two fi
Redstringline[.]com is a rogue webpage that our research team discovered during a routine inspection of unreliable websites. This page promotes spam browser notifications and redirects visitors to different (likely untrustworthy/malicious) sites. Redstringline[.]com and similar webpages are usual
Quick Files Download is a rogue browser extension that we discovered while inspecting untrustworthy download webpages. This piece of software is promoted as a download management tool. However, Quick Files Download actually operates as adware - it displays various advertisements and spies on users
While inspecting new submissions to VirusTotal, we found the Triclyde malicious program that is classified as ransomware. We determined that this program is part of the Nominatus ransomware family. After a sample of Triclyde was launched on our test machine, it began encrypting files. However, un
While inspecting sites offering "cracked" software for download, our researchers discovered the ViewFD malware. This program can force-open a wide variety of unreliable, rogue, scam, and malicious websites. ViewFD may also have other harmful abilities. Malicious programs like ViewFD can ca
Defenderlab[.]xyz is a deceptive page running the "Your PC is infected with 5 viruses!" scam. Also, it asks for permission to show untrustworthy notifications. Our team has discovered defenderlab[.]xyz while inspecting pages that use rogue advertising networks. Pages like defenderlab[.]xyz are not