The internet is rife with various untrusted and rogue websites, and captchatopsource[.]com is a prime example. It shares many similarities with continue-site.site, freshnewmessage.com, check-me.online, and thousands of others. Visitors to this page are presented with dubious material and are redir
Discovered by xiaopao, Danielthai is a malicious program and a new variant of RIP lmao ransomware. It is designed to encrypt data and demand ransoms for decryption. During the encryption process, files are appended with the ".locked" extension. For example, a file originally named as something li
Generally, browser hijacking programs change browser settings to promote a specific address, usually a fake search engine. The Santa APP browser hijacker promotes the keysearchs.com address, but not by changing settings (see below). Other rogue apps also promote this address. Santa APP can also r
"Banco de Espana email scam" refers to a spam campaign. This term defines a mass-scale operation during which deceptive emails are sent by the thousand. The scam messages distributed through this campaign are disguised as deposit notifications from "Banco de Espana". Note that these emails are in
Ransomware is a type of malware that encrypts files and demands a ransom to decrypt them. It targets both businesses and individuals. Typically, cyber criminals demand to be paid in Bitcoins or other cryptocurrencies, and ransomware victims cannot access or use files unless a ransom is paid. Hell
"Ministero dello Sviluppo Economico email virus" refers to a spam campaign designed to proliferate the Ursnif trojan. The term "spam campaign" defines a mass-scale operation during which thousands of deceptive emails are sent. The scam messages distributed through this campaign are disguised as m
goldeneraaudio[.]org is a rogue web page that operates by delivering dubious content and redirecting visitors to other untrusted/malicious sites. There are thousands of these bogus pages on the web including load28.biz, greenmode.biz, and zvideo-live.com to name just a few examples. Users rarely
Belonging to the Dharma ransomware family, Con30 is data-encrypting malware. It operates by encrypting files (rendering them inaccessible and useless) to demand payment from the victims. During the encryption process, affected files are renamed following this pattern: original filename, unique ID
SmartPCFixer is advertised as a tool that helps users to fix Windows errors and optimize the operating system. It is likely that this application arrives bundled with other software or is distributed using other dubious methods (e.g., through specific deceptive advertisements). Typically, users a
Wcg is malicious software, which is part of the Dharma ransomware group. Systems infected with this malware have their data encrypted and users receive ransom demands for decryption. I.e., files stored on devices become inaccessible and are renamed, and victims receive payment demands for access r