Heur.advml.c Detection
Heur.advml.c is the designation given to a heuristic detection that can be brought up by some antivirus applications. In most cases, this is a false positive. Heuristic detection in antivirus software works very... Read more
Beware of the 'Norton LifeLock' Scam
There is yet another scam making the rounds online. As usual, this new scam is being distributed using malicious spam emails. The scam abuses the names of legitimate entities, this time NortonLifeLock and PayPal. It... Read more
Adforyounews.com Uses Fake Anti-Bot Check
Adforyounews dot com is a very pedestrian misleading website. The lazily thrown-together page pushes a very obvious fake anti-bot check in the hopes that it will fool users into allowing ads on their devices. Upon... Read more
What is SurplusStatus Mac Adware?
SurplusStatus is the name of a piece of adware that works on Mac systems. SurplusStatus belongs to the AdLoad family of adware clones. SurplusStatus has a lot of similarities with the dozens of AdLoad clones that... Read more
Xbtl Ransomware Uses Djvu Code
There is a brand new ransomware strain in the wild, called the Xbtl ransomware. It belongs to the family of Djvu ransomware variants. Xbtl encrypts the targeted system, leaving files scrambled. Encrypted file types... Read more
K1ng Ransomware Joins Dharma Clone Family
There is a new ransomware variant in the wild, using code belonging to the Dharma ransomware clone family. The new version is called the K1ng ransomware. K1ng behaves as expected - it encrypts files on the victim... Read more
The View-Dark Rogue Extension Pushes Unwanted Ads
View-Dark is the name of a rogue browser extension that acts like adware. View-Dark is an extension that claims it can change the look of web pages, switching the color scheme to a dark-tinted "night mode" of sorts.... Read more
0ktapus Phishing Kit Deployed in Massive Campaign
A large-scale phishing campaign that was executed recently affected over a hundred organizations and companies. The tool used bears the same name as the threat actor behind the phishing campaign - 0ktapus. The... Read more
Fopra Ransomware is a New Phobos Clone
A new variant of the Phobos ransomware family was discovered recently. The new strain is called the Fopra ransomware. Fopra does nothing particularly different compared to other Phobos clones. It encrypts files on the... Read more
What is the Playless Videos Rogue Extension?
Playless Videos is the name of a rogue browser extension that claims to remove ads in online videos you watch. However, the little surprise contained in Playless Videos that is not announced to users is that the... Read more
How to Avoid Fynweb.com Ad Pop-Ups
Fynweb dot com is a very generic misleading website that exists solely to push ads into visitors' browsers. Landing on the page, you will be greeted by an image of a confused robot, along with the text "Click allow if... Read more
Moisha Ransomware Uses Tox Messenger for Contact
Moisha ransomware is the name of a newly discovered strain of file-encrypting malware. The new variant does not seem to belong to any larger family of ransomware clones. Moisha encrypts files on the victim's computer,... Read more
