The NetSupport Manager program is categorized as a Remote Access Tool (RAT). Like most programs of this type, it allow users to access computers, workstations, and servers locally and remotely. This is legitimate software that can be used by anyone, however, RATs are often misused by cyber crimina
Spyhunter is the name of a legitimate anti-malware program, however, cyber criminals have recently started to exploit this name in their ransomware campaign. Developers (cyber criminals) use it to encrypt victims' data (by blocking access) unless a ransom is paid. Spyhunter ransomware adds the ".s
Raldug is another variant of high-risk ransomware called Djvu. As with its predecessor, Raldug encrypts stored data, thereby making it unusable. Additionally, Raldug appends filenames with the ".raldug" extension (e.g., "sample.jpg" is renamed to "sample.jpg.raldug"). Raldug also places the "_read
The ytmp3[.]cc website (called "YouTube to Mp3 Converter") operates as a media converter that allows users to convert YouTube videos to audio or video/mp3 or mp4 formats and then to download them. The website uses various advertising networks that display ads leading to other untrustworthy sites.
Zumanek is high-risk malware categorized as a banking/Remote Access Trojan (RAT). This malware is distributed using social engineering. In this way, cyber criminals trick users into downloading and installing Zumanek without their consent. The presence of this infection might cause various privacy
Discovered by Jakub Kroustek, Carcn is a ransomware-type malicious program that belongs to the Dharma malware family. Developers spread this infection to prevent victims accessing their computer files unless a ransom is paid. Carcn is designed to encrypt data and make it unusable. It also renames
ketintontrat[.]info is one of many rogue websites on the internet. This site is similar to hundreds of other pages of this type such as maranhesduve[.]club, undrabbifor[.]info, and tontritrattof[.]info. When visited, it causes redirects to several untrustworthy websites or displays dubious content
feed.ebooks-club.com is another fake search engine. As with other sites of this type, it is presented as 'useful' - supposedly providing fast searches, accurate results, and so on. These search engines are often promoted through potentially unwanted applications (PUAs), browser hijackers. In this
George Carlin is a ransomware-type virus that stealthily infiltrates the system and encrypts most stored data. This is a new variant of another ransomware infection called Razy, however, it has many differences. It is rather unusual as compared to other infections of this type: George Carlin does
Chthonic is a Trojan-type program that is installed through emails sent from hijacked/stolen PayPal accounts. The program leads to a fake Google Chrome update file that is promoted on the hijacked website. Visitors are informed that their Chrome browser is outdated and needs to be updated by clic