Discovered by Jakub Kroustek, ROGER is a malicious program belonging to the Crysis/Dharma ransomware family. It operates by encrypting data and demanding ransom payments for decryption tools/software. During the encryption process all affected files are renamed with the victim's unique ID, develop
vpncheckyou[.]com is one of many deceptive websites that use scare tactics to trick people into downloading dubious software. At the time of research, this web page was designed to trick visitors into believing that their devices (iPhones) were infected with viruses. It then encourages them to
"Mac OS X is infected (4) by viruses" is a typical virus alert. Pop-up windows of this type appear only on untrustworthy, deceptive websites. Typically, people visit these sites unintentionally - they are redirected by potentially unwanted applications (PUAs), which cause unwanted redirects, del
"PRIZE EMAIL" is a scam run by deceptive websites. It claims that users' emails have been selected as participants in a prize promotion, and therefore they have won certain prizes. In fact, the scam operates by tricking users into making monetary transactions, which are supposedly necessary to rec
Hets is malicious software belonging to the Stop/Djvu ransomware family. Devices infected with this malware have their data encrypted and the cyber criminals behind this infection demand ransom payments for decryption. When it encrypts files, the program renames them with the ".hets" extension. F
"Microsoft Protected Your Computer" is a notification that is displayed on the website of a technical support scam. This web page is disguised as an official Windows Support website, however, Microsoft has nothing do to with it. The main purpose of this scam is to trick people into calling scamme
Similar to newsredirect.net, giantttraffic.com, ewaglongoo.com, and thousands of others, essaemiaaut[.]com is a rogue website. It operates by presenting dubious content and/or redirects visitors to other untrustworthy web pages. Most users enter these sites unintentionally when they are redirecte
BigBossRoss is a new variant of Garrantydecrypt ransomware. It is designed to prevent victims from accessing their files by encryption. In order to decrypt files, victims are forced to purchase a decryption tool from the cyber criminals who designed this ransomware. BigBossRoss appends the ".bigb
MT88 is a malicious program belonging to the Matrix ransomware family. It is designed to encrypt data and demand ransom payments for decryption. During the encryption process, affected files are renamed using the following pattern: "[MarkTrue88@protonmail.com].[random_string].MT88". For example,
Msop is malicious software belonging to the Stop/Djvu ransomware family. It is designed to encrypt data and demand ransom payments for decryption. When it encrypts data, all affected files are appended with the ".msop" extension. Therefore, "1.jpg" becomes "1.jpg.msop", and so on for all compromis