Many spam campaigns infect computers with high-risk malware. Cyber criminals send emails that contain malicious attachments, or website links designed to download malicious files, and they hope that recipients open/execute them. Generally, the emails are disguised as important, official messages f
"We Have Hacked Your Website" is a scam email claiming that the website of the recipient's company has been hacked. The scammers state that they have obtained the databases and will leak them, unless a certain sum is paid within the given time frame. This message is a scam and the information pro
Discovered by malware researcher S!Ri, Creepy is a ransomware-type program that encrypts files and appends filenames with the "[rzi-tna][Zir0@airmail.cc].creepy" extension. For example, a file like "1.jpg" would appear as "1.jpg[rzi-tna][Zir0@airmail.cc].creepy" following encryption. After this p
Twin Flower is a malware campaign used to spread files designed to install a malicious music downloader, which downloads files without users' permission and collects browser cookies. Files distributed through the Twin Flower campaign can do further damage by injecting malicious code into systems.
HelpFeature is an adware-type application that runs intrusive advertisement campaigns (i.e., it delivers various unwanted and harmful ads). This app also shares characteristics with browser hijackers such as browser modification and bogus search engine promotion. HelpFeature specifically promot
eztv[.]io is a dubious Peer-to-Peer sharing website, which allows people to share content through torrent files. These sites infringe copyright laws and often use rogue advertising networks for monetization. Note that eztv[.]io is no exception. Visitors to this site can be redirected to various ot
There are many emails scams on the internet. Scammers send the messages to deceive unsuspecting recipients into providing personal information, transferring money, etc. In this particular case, they attempt to take advantage of fears surrounding the coronavirus outbreak and seek to trick people i
InfoSearch is a rogue application classified as adware. It operates by enabling the placement of various intrusive advertisements on any visited website. This app also shares characteristics with browser hijackers such as browser settings modification and fake search engine promotion. Additiona
Ahegao is designed to encrypt victims' data, rename every encrypted file and display a pop-up window containing a ransom message. This ransomware renames encrypted files by appending the ".ahegao" extension to filenames. For example, it changes "1.jpg" to "1.jpg.ahegao", "2.jpg" to "2.jpg.ahegao",
Lucifer is a malicious program classified as a banking Trojan. It primarily targets banking information, however, this malware also makes attempts to exfiltrate data relating to email, e-commerce and streaming accounts. Its range of attacks has covered most of Latin America, and Europe, Asia and N