News-keheza[.]cc has two purposes: to trick visitors into agreeing to receive notifications and promote questionable, potentially malicious sites. The Internet is full of sites like news-keheza[.]cc, for example, ourhypewords[.]com, digitalcaptcha[.]top, and ralemploay[.]space. Users do not visit
"Baldur email virus" refers to a malware-spreading spam campaign. The scam emails distributed through this campaign are presented as purchase orders. The "Baldur" spam campaign aims to infect recipients' devices with the Agent Tesla RAT (Remote Access Trojan). The "Baldur" scam emails requ
AtomSilo is a type of malware that blocks access to files by encrypting them and renames every encrypted file by appending the ".ATOMSILO" to its filename. It renames "1.jpg" to "1.jpg.ATOMSILO", "2.jpg" to "2.jpg.ATOMSILO", and so on. As its ransom note, AtomSilo creates the "README-FILE-#COMPUTE
Once visited, ourhypewords[.]com asks for permission to show notifications. Also, ourhypewords[.]com can open untrustworthy websites. It is similar to ralemploay[.]space, everyday-news-channel[.]com, tobaitsie[.]com, and plenty of other pages that are promoted through shady ads, other dubious page
Similar to ralemploay.space, everyday-news-channel.com, tobaitsie.com, ploringseav.space, and many others, digitalcaptcha[.]top is a rogue website. It is designed to load questionable content and/or redirect visitors to various (likely unreliable or malicious) sites. Users usually access such web
COVID 19 is a piece of malicious software categorized as ransomware. It is designed to encrypt data (lock files) and demand payment for the decryption. Affected files are appended with a ".covid-19" extension. For example, a file titled "1.jpg" would appear as "1.jpg.covid-19", "2.jpg" as "2.jpg.c
Jigsaw is a new variant of the Chaos ransomware. It prevents victims from accessing/using files by encrypting them. Also, it renames files by appending a randomly generated extension to their filenames. For example, it renames "1.jpg" to "1.jpg.9esl", "2.jpg" to "2.jpeg.kwkc". Jigsaw creates the "
"Instagram email scam" refers to a spam campaign. The letters distributed through this campaign are disguised as notifications from the Instagram social media platform. These fake emails aim to promote various questionable websites. There are several variants of the "Instagram" scam emails
MemoryField is a rogue app classified as adware. Additionally, it has browser hijacker qualities. Due to the questionable techniques used to distribute adware and browser hijackers, they are also categorized as PUAs (Potentially Unwanted Applications). Adware enables the placement of pop
ExecutiveProduct generates advertisements and promotes a fake search engine by changing the settings of web browsers that have this app installed on them. ExecutiveProduct can be categorized as adware and a browser hijacker. ExecutiveProduct displays advertisements (for example, banners,