Discovered by Michael Gillespie, SANTA_CRYPT is the name of a malicious program classified as ransomware. It is designed to encrypt data and demand payment for decryption. During the encryption process, SANTA_CRYPT appends affected files with the ".$ANTA" extension. For example, a file originally
Link Default hijacks browsers by changing specific settings to find.linkdefault.com, the address of a fake search engine. When installed on Google Chrome, Link Default also adds the "Managed by your organization" feature. Note that most browser hijackers are designed to promote fake search engines
check-message[.]live is a rogue website sharing many similarities with bo5news.biz, arguinely.club, lewsheaned.club and thousands of others. Visitors to this page are redirected to other untrusted/malicious sites and/or are presented with dubious content. Typically, users enter these web pages th
Shop Together is advertised as an extension providing shopping suggestions with the best prices available online, however, it actually functions as adware and serves intrusive advertisements. In many cases, users download and install adware unintentionally and, for this reason, Shop Together is c
Discovered by Jirehlov Solace, Nibiru ransomware is designed to encrypt victims' files, change their filenames, lock the screen, and provide instructions (on the locked screen) about how to contact the developers and pay the ransom. It renames encrypted files by appending the ".Nibiru" extension.
Sharing many similarities with bo5news.biz, bhutantravellink.com, arguinely.club, and thousands of others, arisedsore[.]info is a rogue website. It operates by presenting visitors with dubious content and/or redirecting them to other bogus or possibly malicious sites. Few users access these rogue
legionship[.]club is one of many websites that should not be trusted - it promotes (opens) various other bogus web pages or displays dubious content. Commonly, browsers open websites such as legionship[.]club due to potentially unwanted applications (PUAs) installed on them. I.e., users do not vi
Product Connecter is advertised as an easy easy-to-use web search tool with targeted results, however, this software is classified as adware - it generates revenue for the developers by serving advertisements. Commonly, users download and install advertising-supported applications inadvertently a
GiGi Browse is rogue software classified as a browser hijacker. Following successful infiltration, it makes changes to browser settings to promote tailsearch.com (a bogus search engine). Additionally, this browser hijacker has data tracking capabilities, which are employed to gather browsing-relat
bo5news[.]biz is one of many rogue websites (including arguinely[.]club, lewsheaned[.]club, and mommaskids[.]com) that promote other untrusted pages or load dubious content. Note that users do not visit these sites intentionally - they are mostly opened by potentially unwanted applications (PUAs)