GLB is malicious software belonging to the Dharma ransomware family. It operates by encrypting data in order to demand payment for decryption. When this ransomware encrypts, all compromised files are renamed following this pattern: original filename, unique ID assigned to the victims, cyber crimin
Tsar belongs to the VoidCrypt ransomware family. It prevents victims from accessing their files by encryption, renames every encrypted file, and generates a ransom message. Tsar renames files by adding the decodetsar@gmail.com email address, victim's ID, and appending ".Tsar" as the file extension
Typically, apps that are classified as adware serve advertisements, however, this particular app promotes a fake search engine by making certain changes to browser settings. It might also collect data. In this way, SkilledObject functions both as adware and as a browser hijacker. SkilledObject
TakeMyFile is an untrusted application, which is endorsed as a tool that allows users to share files (e.g. apps, audio, documents, photographs, presentations, videos, etc.). Due to the dubious methods used to proliferate this app, it is classified as a Potentially Unwanted Application (PUA). Desp
LoveSportsSearch changes certain browser settings to lovesportssearch.com, the address of a fake search engine. It is also likely to collect browsing data and other information. Note that browser hijackers are categorized as potentially unwanted applications (PUAs), since, in most cases, users do
Igdm belongs to the Djvu ransomware family. It encrypts and renames victims' files and creates a ransom message that contains details such as cost of a decryption tool and key, how to contact the ransomware developers, and various other details. Igdm renames files by appending the ".igdm" extensi
Commonly, email phishing scams appear as official messages and include a website link whereby recipients are asked to provide sensitive information, such as login credentials (usernames, email addresses, passwords) for various accounts, credit card details, bank account numbers, social security nu
AdBlock Stream is advertised as an app that blocks ads, improves browser performance, and protects online privacy and security. In fact, this app does the opposite: it functions as adware and serves advertisements. It also reads data from websites that users visit. Typically, people download and i
Generally, apps such as IncognitoSearchIt (browser hijackers) modify browser settings and redirect users to the address of a specific fake search engine. This particular app promotes incognitosearchit.com. It is likely that it also collects data relating to users' browsing activities. Frequently,
allbestsecureeu[.]com is a deceptive website running various scams. At the time of research, the site promoted three variants of a scam claiming that visitors must either download/install or update Virtual Private Network (VPN) software. This type of scheme is used to endorse various untrusted a