Our analysis of malware samples submitted to VirusTotal has revealed the existence of a new variant of the Djvu ransomware family, dubbed Iowd. Its main objective is to encrypt files on an infected system. Also, Iowd appends the ".iowd" extension to filenames and creates the "_readme.txt" file wit
After analyzing malware samples submitted to VirusTotal, we have identified a new ransomware variant known as Ioqa, which is a member of the Djvu ransomware family. The primary objective of Ioqa is to encrypt files on the infected system. As part of the encryption process, Ioqa renames the affecte
Itspeedg[.]com is a rogue webpage discovered by our researchers during a routine investigation of untrustworthy websites. This page is designed to promote dubious/hazardous software and browser notification spam. Furthermore, it can redirect visitors to other (likely unreliable/malicious) sites.
While checking out questionable websites, our research team found the ibuhaughuss[.]com rogue page. It is designed to endorse browser notification spam and redirect visitors to other (likely untrustworthy/harmful) sites. Most users enter webpages like ibuhaughuss[.]com through redirects caused by
While investigating deceptive webpages, our researchers discovered the AdzEater browser extension. It is presented as an adblocker for the YouTube video-hosting platform. However, our analysis revealed that instead of blocking advertisements, this extension displays them. Due to this behavior, Adz
Our research team discovered the hintonjour[.]com rogue page while checking out suspicious sites. It pushes browser notification spam and redirects users to different (likely unreliable/harmful) websites. Most visitors to hintonjour[.]com and similar webpages access them through redirects caused b
Our investigation has revealed that Games Day is a browser extension that utilizes browser hijacking to promote the website games-day.com. Unfortunately, games-day.com is a fake search engine that does not offer unique search results. In most cases, users inadvertently download and install/add bro
After inspecting this "Kuwait Airways" email, we determined that it is spam. This letter requests the recipient to provide any inquiries they have, and it contains a malicious attachment designed to infect systems with Agent Tesla malware. It must be emphasized that this email is fake, and it is
We examined allimpactdesign[.]com and learned that this website uses a deceptive tactic to trick visitors into allowing it to send notifications and redirects them to other suspicious websites. We discovered allimpactdesign[.]com while inspecting pages that use rogue advertising networks.
Our researchers discovered the lax-search.com fake search engine while inspecting browser hijackers. This software typically promotes (via redirects) websites like lax-search.com. These search engines are rarely capable of providing search results, and while lax-search.com can generate them – the