Typically, apps such as LivePDFSearch force users to visit a specific web address. This browser hijacker promotes livepdfsearch.com, the address of a fake search engine by modifying certain browser settings. It can also read browsing-related information. Users often download and install browser h
WebFox is a rogue browser, based on an open-source project called Chromium. It is endorsed as a browser that offers faster and safer browsing. In addition, it has a feature that allows users to access certain browser functions straight from the desktop. In fact, WebFox is classified as adware. It
Research shows that the OceanLotus 'backdoor' targets MacOS computers. Cyber criminals behind this backdoor have already used this malware to attack human rights and media organizations, some research institutes, and maritime construction companies . The OceanLotus backdoor is distributed via a
Discovered by xiaopao, .help is a malicious program that belongs to the VoidCrypt ransomware family. Systems infected with this malware experience data encryption and users receive ransom demands for decryption tools/software. When .help (VoidCrypt) encrypts, all affected files are renamed follow
ettvdl[.]com is a torrent website which uses rogue advertising networks to promote various websites, including dubious ones. Commonly, websites such as ettvdl[.]com contain copyrighted content (movies, music, etc.). Torrenting is not illegal, however, the same cannot be said about downloading cop
WebDefence is advertised as software that improves browsing security and the overall browsing experience. In fact, it is an advertising-supported web browser based on Chromium (free and open-source software project from Google). Therefore, WebDefence is classified as adware. Note that, in most ca
GillCom is rogue software categorized as a browser hijacker. It operates by making changes to browser settings to promote fxsmash.xyz (a bogus search engine). In addition, GillCom has data tracking capabilities that are employed to monitor users' browsing habits. Due to the dubious methods used t
The main purpose of the IncognitoSearchNet browser hijacker is to force users to visit incognitosearchnet.com (a fake search engine). Like most apps of this type, it promotes the bogus address by modifying certain browser settings. IncognitoSearchNet also collects details relating to users' browsi
Global-support[.]space (apple.global-support[.]space) is a deceptive website designed to promote scams. At the time of research, this site ran a scheme targeting iPhone users, yet the web page might be accessed on other Apple devices as well. This scam claims that users' iPhones have been infec
Commonly, browsers open websites such as tutupdate29[.]com when they have potentially unwanted applications (PUAs) installed on them. I.e., users do not often visit these pages intentionally. Note tutupdate29[.]com (and similar sites) are also promoted via other dubious web pages and advertisement