Safe is a new variant of Paradise ransomware. It operates by encrypting data and demanding ransom payments for decryption. When encryption is underway, all files are appended with a unique ID number (generated individually for each victim), the developer's email address, and ".safe" extension (for
People who arrive at tencecatche[.]info are presented with dubious content or redirected to other untrustworthy websites. This site operates in a similar manner to many other rogue sites including, for example, robotornotchecks[.]online, zwenews[.]biz, and vikolidoskopinsk[.]info. In most cases,
Kronos is malicious software and a new variant of Ouroboros ransomware. It is designed to encrypt data and demand ransom payments for its recovery (i.e., payment for decryption tools/software). During the encryption process, all files are appended with the ransomware developer's email address, vi
Coot is one of many malicious programs that belong to the Djvu ransomware family. Ransomware is a form of software that blocks access to data by encryption. Victims who have files encrypted by ransomware cannot regain access unless they decode them with a decryption tool and/or key. To obtain the
BitSecure AV is advertised as antivirus software that includes additional features such as a firewall, disk cleaner, startup items manager, and PC tuner. In fact, this program is categorized as a potentially unwanted application (PUA), since developers distribute it through the set-ups of other p
ForwardOpen is yet another adware-type application endorsed as tool that improves the browsing experience by providing fast searches, accurate search results, and similar. This app operates by running intrusive advertisement campaigns (it displays unwanted, annoying, and even harmful ads). Furt
Wenfuntoday is a family of scam websites designed to promote untrustworthy applications. This variant endorses the Smart Mac Booster app, a rogue product classified as a Potentially Unwanted Application (PUA). Scam websites operate by employing various scare tactics to trick visitors into downlo
Lulz ransomware is malicious software designed to encrypt data with the AES-256 encryption algorithm, change the victim's wallpaper, rename encrypted files, and create a ransom message. It renames all files by adding the ".Lulz" extension to filenames. For example, "1.jpg" becomes "1.jpg.Lulz". I
Virtually identical to search.turdeland2.com, search.newsflashapp.com, search.mapsglobalsearch.com, and many others, home.specialtab.com is a fake search engine. It supposedly enhances the browsing experience by generating improved search results. Most fake web searchers are unable to provide a
SDBbot is the name of a remote access trojan (RAT). Typically, cyber criminals try to infect computers with software of this type to take control of them remotely and perform various actions. In most cases, they use RATs to steal sensitive information and/or infect computers with additional malwar