Discovered by Michael Gillespie, Kodc is a malicious program belonging to the Stop/Djvu ransomware family. Systems infected with this malware have data encrypted and their respective users receive ransom demands for decryption. When Kodc ransomware encrypts, all files are appended with the ".kodc"
UpgradeStart is a potentially unwanted application (PUA), an adware-type app that supposedly improves the browsing experience. In fact, adware serves various advertisements. Furthermore, applications such as UpgradeStart also gather information. People generally download and install adware unint
BWNG belongs to the Matrix ransomware family. It encrypts victim's files, changing the filenames, and also stores several additional files on the desktop. BWNG renames each encrypted file using the following pattern: "[billwong73@yahoo.com].[random_string].BWNG", thus making them indistinguishable
Mark is malicious software and a variant of Paradise ransomware. Systems infected with this malware have their data encrypted and users receive ransom demands for decryption tools/software. During the encryption process, files are renamed according to the following pattern: original title, the wo
Discovered by malware researcher, Onion, 5ss5c is malicious software and an updated variant of Satan ransomware. It operates by encrypting data and demanding payment for decryption. When 5ss5c ransomware encrypts, all affected files are renamed according to the following pattern: "[5ss5c@mail.ru][
"YOU ARE THE CHOSEN!" is a scam run by deceptive websites. It claims that visitors have been chosen and can win a special reward. These scams are simply intended to generate revenue for their designers. They must never be trusted, as doing so can lead to serious issues. Sites that promote "YOU AR
install-plug-s3[.]com is designed by scammers who seek to deceive unsuspecting visitors into installing potentially unwanted applications (PUAs), such as browser hijackers, adware or other apps of this kind, through a fake Adobe Flash Player installer. In some cases, these websites are used to s
JhoneRAT is the name of a Remote Access Tool (Trojan), which is distributed through malicious Microsoft Office documents. Cyber criminals behind it target Arabic-speaking users. This malicious program selects (by filtering) victims by checking the keyboard layout of their computers. JhoneRAT is c
"You have (1) package waiting" is a scam run by deceptive websites. Under the guise of an official delivery tracking site, the scam claims that visitors have packages waiting for them. The purpose of this scheme is to trick users into making a monetary transaction, a fake delivery fee. All inform
Discovered by GrujaRS, Picocode is ransomware and an updated version of Pico. Like many other programs of this type, Picocode changes filenames of all encrypted files and creates a ransom message. It renames files by appending the ".picocode#" extension and a number. For example, it renames "1.jp