Discovered by PaulM, LimeRevenge is a remote access trojan (RAT) and a new variant of RevengeRAT. This malware is designed to allow remote access to infected devices, thereby granting control over them. RAT infections are deemed to be high-risk and can cause a variety of severe issues. There
losx.xyz is one of many fake search engines. Two of the apps used to promote it are called APP (on Chrome) and SDL (on Firefox), however, other apps might also be used. Typically, apps that promote fake search engines are categorized as browser hijackers and potentially unwanted applications (PUAs
qqs7.xyz is the address of a fake search engine, which is promoted through a potentially unwanted application (PUA) called APP (in fact, it is likely that developers also promote qqs7.xyz via other rogue applications). This PUA is related to another app of this type called QIP. Both are categoriz
"CVE-2018-10562" is the code name of a vulnerability discovered in a variety of Dasan GPON home routers. Cyber criminals have recently started a new spam campaign naming it after this vulnerability. It is designed to extort money by threatening to expose evidence of users' sexual activity. The cy
ANTEFRIGUS is the name of a ransomware infection. Generally, malware of this type is designed to encrypt files with a strong encryption algorithm that can only be decoded with specific decryption software and/or key. In fact, this particular ransomware does not encrypt files stored on the C (C:) d
streampoint[.]live is a rogue website, sharing similarities with notification-centar.com, windowsguidenews.com, robotornotcheckonline.club, and many others. It operates by presenting visitors with dubious content and/or redirecting them to other untrustworthy/malicious web pages. Few users access
routgveriprt[.]com is one of many rogue websites online. Sites of this type share certain similarities. Relevant examples include highertpushs.com, mirox25.biz, windowsguidenews.com, etc. These web pages present visitors with dubious content and generate redirects to other untrustworthy/malicious
Nonamenba is a scam website group designed to promote dubious software. This variant endorses the Smart Mac Booster Potentially Unwanted Application (PUA). Users, who access these sites are presented with alarms about an alleged threat present on their device. For removal of this fake virus, No
AdLoad is malicious software that targets macOS operating systems. It is capable of avoiding detection by built-in macOS security tools and a number of third party antivirus programs and other security suites of this type. Furthermore, it prevents victims from removing the software from operatin
Discovered by Jakub Kroustek and belonging to the Dharma/Crysis malware family, Ninja is a malicious program classified as ransomware. Ninja operates by encrypting data and demanding ransom payments for decryption. During the encryption process, all files are appended with a unique ID (generated