Discovered by Jakub Kroustek, Dharma-Cry is a variant of Dharma ransomware. Like most programs of this type, it is used to encrypt data and force victims to purchase a decryption tool - in effect, to pay a ransom to Dharma-Cry's developers. Dharma-Cry adds the ".cry" extension to the name of each
THe "Al Hafez Trading Company Email Virus" scam is used by cyber criminals to spread the NanoCore remote access trojan (RAT). They send emails that contain a malicious Microsoft Office document and hope that people will open it. If opened, the document causes download and installation of the RAT.
Helper is yet another ransomware-type infection discovered by Jakub Kroustek. As with most ransomware infections, Helper stealthily infiltrates computers and encrypts stored files, thereby rendering them unusable. During encryption, Helper renames each file by appending a random string as the exte
Dotmap is malicious software categorized as ransomware. It encrypts data and forces victims to pay a ransom (purchase a decryption tool/key). Dotmap belongs to Djvu ransomware family and was discovered by Michael Gillespie. This ransomware changes the names of encrypted files by adding the ".dotma
Discovered by GrujaRS, Mamba is an updated variant of high-risk ransomware called Phobos. After successful infiltration, Mamba encrypts stored files and appends filenames with the ".mamba" extension plus the victim's unique ID and developer's email address. For instance, "sample.jpg" might be ren
PC Regcleaners (other known variants are named Regcleanerz and Regcleaners) is promoted as a system/computer optimization program that supposedly cleans computers and enables them to start faster. According to the developers, it includes tools such as a registry cleaner, memory booster, and junk
As the name suggests, Registry Cleaner supposedly cleans and fixes the system registry. According to its developers, this program is also capable of boosting memory and cleaning junk files. Registry Cleaner may seem to be a legitimate program, however, it is malicious and a Trojan.Clicker used to
gotwidores[.]info is yet another rogue website designed to deliver dubious content and cause redirects to potentially malicious websites. It is virtually identical to deloplen.com, checkpost.space, evengsitolightont[.]info, and dozens of other rogue sites. Generally, users visit gotwidores[.]info
PC Boost Pro is promoted as a registry cleaner, memory booster, and junk cleaner. Developers claim that it is designed to make computers faster and cleaner. What they do not mention is that PC Boost Pro is a malicious program known as Trojan.Clicker. This is a tool that cyber criminals use to perf
"CVE-2019-1663" is the name of a 'sextortion' scam that is used to blackmail people by threatening to leak humiliating/compromising photos. To prevent this, recipients are encouraged to pay a specific amount in a cryptocurrency. There are many emails of this type online, none of which should be tr