The Delete Facebook Messages app supposedly allows users to archive and/or delete Facebook messages. In fact, this is a browser hijacker that changes browser settings (thereby promoting a dubious website) and gathers details relating to users' browsing habits. Most people do not download or insta
Discovered by Jan0fficial, Arsium is the name of a ransomware builder - software that allows cyber criminals to generate malicious executables. If launched, these infect computers with ransomware. Programs of this type lock files strong encryption algorithms. Ransomware is used to blackmail peopl
likemyculture[.]info is a rogue website that shares many similarities with checking-your-browser.com, goodmedia.me, loostnews.biz, and many others. The purpose of this site is to redirect users to other rogue websites and feed them with dubious content. Websites such as likemyculture[.]info are t
Discovered by Michael Gillespie, Masok is a ransomware-type program that belongs to the Djvu family. The cyber criminals who designed Masok spread it to make money from unsuspecting people who cannot access their files due to encryption by this ransomware. To decrypt their files, victims are enco
Identical to ernorvious.com, clckworld.club, dreamteammyfriend.com, and many others, dingboronhartal[.]pro is a rogue website designed to feed users with dubious content and redirect them to other rogue sites. Most visitors arrive at dingboronhartal[.]pro inadvertently - they are redirected by po
MyOfficeX supposedly allows users to access an online office, which includes free processing of Word files, spreadsheets, and presentations. In fact, research shows that this app is a browser hijacker and a potentially unwanted application (PUA). Frequently, people download and install PUAs inadve
free-coupons[.]network is one of many rogue websites designed to feed users with dubious content and redirect them to other rogue sites. It is virtually identical to goodmedia.me, seplumming.pro, checking-your-browser.com, and many others. Many users visit this site inadvertently, as they are red
As its name suggests, ERIS RANSOMWARE v2 it is a new version of Eris ransomware. Cyber criminals proliferate it to extort money from people by forcing them to pay ransoms. These programs lock (encrypt) files and prevent access unless a ransom is paid. This version of Eris creates a text file (ran
Identical to searchitnow.info and searchmarquis.com, optimalsearch.me is a fake search engine that supposedly enhances the browsing experience by generating improved results. In fact, this site is promoted using rogue downloaders/installers designed to modify browser settings without users' perm
Discovered by Jakub Kroustek, Junior is the name of a new version of Paradise ransomware. Like many other programs of this type, Junior encrypts data and encourages victims to pay a ransom. It creates a ransom message within an HTML file called "%= RETURN FILES =&.html" and renames locked fil