Win/Exploit.CVE-2017-11882 is an exploit designed to abuse a vulnerability (CVE-2017-11882) in Microsoft Equation Editor, a component of the Microsoft Office programs. While this weak link has been addressed in the latest MS versions, unpatched ones remain vulnerable. This exploit is used as the
HTML/Phishing.Agent is a detection name for malicious HTML files. It is very common for such files to be used in phishing attacks because other files are usually blocked. Cybercriminals send them mainly via email to trick users into opening phishing pages and providing sensitive information on the
Vtym is ransomware that encrypts files and appends the ".vtym" extension to filenames. Our malware researchers have discovered this ransomware variant while analyzing the samples submitted to the VirusTotal page. It was found that Vtym is part of the Djvu ransomware family. It also creates the "_r
"TROJAN Zeus2021 spyware adware detected" is a scam our research team discovered while inspecting sites promoted by spam browser notifications. This scheme is presented as a virus alert from Microsoft. It must be emphasized that it is in no way associated with the Microsoft Corporation or its prod
UltraADSBlockSearch is a browser extension our research team found while inspecting dubious download webpages. Following its analysis, we have determined that this piece of software operates as a browser hijacker. UltraADSBlockSearch modifies browser settings to promote the ultraadsblocksearch.com
Our researchers discovered the myhypestories[.]com page while inspecting rogue websites. This site is designed to promote browser notification spam and redirect visitors to other untrustworthy/malicious webpages. Most users enter myhypestories[.]com and similar sites through redirects caused by pa
Not so long ago, scammers were taking advantage of the COVID-19 pandemic by pretending to be legitimate organizations or other entities and asking to send money, provide sensitive information, etc. We have examined this email and found that scammers behind it are pretending to raise money for Ukra
After inspecting this "UNHCR" email, our researchers determined that it is fake. The letter is presented as a donation campaign held by the UNHCR (United Nations High Commissioner for Refugees). It must be emphasized that this email is fake and in no way associated with the actual UNHCR. This scam
Captcha4greatpeaple[.]top is designed to trick visitors into allowing it to show notifications (into clicking the "Allow" button displayed by a browser). Our team discovered this page while examining torrent sites, illegal movie streaming sites, and other pages that use shady advertising networks.
"Zoho Email Phishing Scam" refers to spam emails that operate as phishing scams - under the guise of messages from the Zoho Corporation. It must be emphasized that such emails are in no way associated with the actual Zoho technology company. Our researchers have found multiple instances of scam l