Phishing emails (malspam campaigns) are one of the most common malware delivery channels. Usually, they are disguised as important or urgent messages from legitimate companies, organizations, institutions, and other entities. Cyber criminals send them to trick recipients into clicking a link and
"Microsoft Teams email scam" refers to a spam campaign. This term defines a mass-scale operation during which thousands of deceptive emails are sent. The scam messages distributed through this campaign claim that recipients have unread messages in their chat on Microsoft Teams. Note that these me
The main purpose of the alert-info[.]space website is to advertise an application called AdsBlock for Safari (it might also advertise other apps). Note that alert-info[.]space uses deception to advertise software: it displays a fake notification stating that access to Safari is blocked and canno
The International Monetary Fund (IMF) is a legitimate financial institution, an international organization that promotes global economic growth, reduces poverty, encourages international trade. There is more than one email scam variant claiming to be authored by IMF officials. Typically, scammers
"Email Account Is Almost Full Scam" refers to a spam campaign, a large-scale operation during which deceptive emails are sent by the thousand. The messages distributed through the campaign in question are presented as notifications concerning a near-capacity email account. These scam emails aim t
Ransomware is a type of malware that encrypts files or the entire device. It also displays a ransom message demanding payment in exchange for decryption software or a key. Usually, victims cannot access or use their files unless they decrypt them with a valid decryption tool. Clman encrypts files
ApolloSearch is a rogue application classified as adware (not to be confused with another adware-type app of the same name). It also has browser hijacker traits. Following installation, this app runs intrusive advertisement campaigns and makes alterations to browser settings to promote fake sear
Raped ransomware is malicious software that encrypts data and demands payment for decryption. I.e., this malware locks files stored on the compromised system and demands ransom payment for recovery. During encryption process, files are appended with the "..raped" extension. For example, a file or
UnitHandler displays advertisements and modifies browser settings to promote a specific address. In this way, it functions as adware and as a browser hijacker. Typically, users do not download or install apps like UnitHandler intentionally and, therefore, this application falls into the categor
PortalAgent displays unwanted advertisements and forces users to visit a specific address (a fake search engine). It is also likely that PortalAgent also collects information relating to internet browsing activities and other data. Note that PortalAgent is distributed through a deceptive instal