Discovered by malware researcher S!Ri, CARLOS is a malicious ransomware program that operates by encrypting the data of infected systems and demanding ransoms to be paid for decryption tools/software. During the encryption process, all affected files are renamed according to the following pattern
Torrentfunk[.]com is a torrent website that contains dubious ads and redirects users to other bogus web pages using rogue advertising networks. Note that torrenting is not illegal, however, downloading copyrighted content is, and it is likely that torrentfunk[.]com contains such content. B
GetIncognitoSearch promotes a fake search engine (getincognitosearch.com). Like most browser hijackers, it achieves this by making certain changes to browser settings. Additionally, it is likely that GetIncognitoSearch gathers browsing-related details and other information. Frequently, users down
torrentgalaxy[.]to is an untrusted Torrent website, which uses rogue advertising networks. This is a common monetization technique and operates by promoting (i.e. force-opening/causing redirects to) various dubious and malicious sites. In addition to the threats posed by visiting the promoted web
moderation-support[.]network is one of many deceptive pages that scammers use to trick visitors into installing various potentially unwanted applications (PUAs). When visited, these web pages display a fake notification stating that the device is infected (and/or damaged) and that it can be fixe
"Message attachments were delayed" refers to a spam email campaign. The term "spam campaign" refers to a mass-scale operation, during which thousands of scam emails are sent. These deceptive messages claim that several email attachments have been delayed and were not delivered to the inbox. To ac
Typically, apps such as LivePDFSearch force users to visit a specific web address. This browser hijacker promotes livepdfsearch.com, the address of a fake search engine by modifying certain browser settings. It can also read browsing-related information. Users often download and install browser h
WebFox is a rogue browser, based on an open-source project called Chromium. It is endorsed as a browser that offers faster and safer browsing. In addition, it has a feature that allows users to access certain browser functions straight from the desktop. In fact, WebFox is classified as adware. It
Research shows that the OceanLotus 'backdoor' targets MacOS computers. Cyber criminals behind this backdoor have already used this malware to attack human rights and media organizations, some research institutes, and maritime construction companies . The OceanLotus backdoor is distributed via a
Discovered by xiaopao, .help is a malicious program that belongs to the VoidCrypt ransomware family. Systems infected with this malware experience data encryption and users receive ransom demands for decryption tools/software. When .help (VoidCrypt) encrypts, all affected files are renamed follow