AppLovin is an adware-type application disguised as TikTok, a legitimate video-sharing social networking application. Research shows that cyber criminals behind this fake app target Jio users in India who use Android smartphones. Note that the TikTok app is banned in this country. After installati
gsecurecontent[.]com is a rogue website designed to redirect visitors to other untrusted/malicious web pages and/or present them with dubious content. This site is typically promoted by adware-type Potentially Unwanted Applications (PUAs) already infiltrated into the system. As well as redirect
TheConverterSearch is a browser hijacker. Following successful infiltration, it operates by making changes to browser settings to promote theconvertersearch.com (a fake search engine). This browser hijacker also monitors users' browsing activity and collects sensitive information extracted from it
Cndqmi is a part of the Snatch ransomware family. Typically, malware of this type encrypts victim's files, renames them and creates and/or displays a ransom message. Cndqmi renames encrypted files by appending the ".cndqmi" extension. For example, it would change "1.jpg" to "1.jpg.cndqmi", "2.jpg"
ExpertRAT is malware which functions as a Remote Administration/Access Trojan (RAT). It allows cyber criminals to control infected machines (computers) remotely. Research shows that cyber criminals behind ExpertRAT target users living in Italy. This RAT was discovered by reecDeep. If there is any
Jdokao is a malicious program, which is part of the Snatch ransomware family. It operates by encrypting the data stored on infected systems and making ransom demands for decryption. During the encryption process, files are appended with the ".jdokao" extension. For example, a file originally name
Myflixer[.]to is an untrusted website offering an illegal movie-streaming and download service. It also uses rogue advertising networks, containing ads designed to promote various dubious websites. Therefore, myflixer[.]to should never be trusted or used. At the time of research, myflixer[
vpnbestapp[.]com is a deceptive website running scams primarily targeting iPhone users. There are two scam variants promoted on this site. One version claims that the user's mobile device has been infected and requires legitimate virus protection tools to be installed onto it. The other version
Smaug ransomware is available for download on the dark web: it is for sale as Ransomware as a Service (RaaS). Therefore, cyber criminals who purchase it can perform ransomware attacks without having to develop malware of this type. Smaug is designed to encrypt files, rename them and create a ranso
TopMusicSearches is dubious software categorized as a browser hijacker. It operates by making alterations to browser settings to promote topmusicsearches.com (a fake search engine). Additionally, most browser hijackers have data tracking capabilities, which are used to monitor browsing activity.