Discovered by dnwls0719, Deal is malicious software belonging to the Phobos ransomware family. It is designed to encrypt data and keep it locked, until a ransom is paid for decryption. During the encryption process, all files are renamed with the victim's unique ID number, developer's email addres
Glupteba is a trojan-type program, malicious software that installs other programs of this type. Cyber criminals distribute Glupteba through malicious advertisements that can be injected into legitimate websites or advertising networks. Research shows that Glubteba can be used to distribute a bro
Discovered by Raby, BlueCheeser is malicious software categorized as ransomware. Devices infected with this program have their data encrypted and users receive ransom demands for decryption tools/software. When BlueCheeser encrypts, all affected files are appended with the ".himr" extension. For
"Activation Warning Alert" is a scam run by rogue web pages. It warns users of 'threats' present on their device, supposedly detected by Windows Security. Note that this scheme has no connection to Microsoft. The scam urges people to call a fake technical support number and share their Windows acc
worldofcontenting[.]info is a scam web page promoting a fake Adobe Flash Player updater. Visitors to this site are presented with deceptive information claiming that Flash Player software is out of date on the system. Note that bogus software updaters often infiltrate dubious content into device
Easy Email Login is a potentially unwanted application (PUA), a browser hijacker designed to provide quick access to email and social networking platforms, and various shopping and weather forecast websites. In fact, it promotes search.easyemaillogintab.net (a fake search engine) by changing brows
Discovered by S!Ri, PassLock damages files irreversibly by changing their content and renaming them by appending the ".encrypted" extension. For example, "1.jpg" becomes "1.jpg.encrypted", and so on. It also displays a pop-up window, which contains instructions about what victims should do next.
Template Finder Now is a rogue app, which is advertised as a tool for easy access to various popular templates. In fact, it operates as a browser hijacker, modifying browsers and promoting a fake search engine (search.templatefindernowtab.com). Template Finder Now can also track data relating to b
The Breaking News Plus app is advertised to allow quick access to various news websites from a new tab page. In fact, Breaking News Plus is categorized as a potentially unwanted application (PUA), a browser hijacker, since it promotes a fake search engine (search.hbreakingnewsplus.com) by changing
MacReviver is advertised as software that helps Mac users to improve system performance and stability, however, various virus detection engines recognize its installer as that of a potentially unwanted application (PUA). Typically, apps of this type are distributed through the set-ups of other (