Threats
Arteerawelly.co.in Attempts to Hijack Browser Settings
Arteerawelly.co.in is a deceptive website designed to trick visitors into granting permission for spam browser notifications. Additionally, this site has the potential to redirect users to other untrustworthy or... Read more
DHL Agreement Documents Email Scam
After examining the email titled "DHL Agreement Documents," we have determined that it constitutes spam. Disguised as a notification from DHL Express, the email falsely claims to contain copies of agreement documents... Read more
MEOW Ransomware is a Threat Despite Funny Name
MEOW operates as a type of ransomware, originating from the CONTI ransomware. It employs file encryption and appends the ".MEOW" extension to the filenames of the affected files. Additionally, the ransomware leaves... Read more
"American Express - Unusual Spending Activities Detected" Email Scam
Upon examination of the email, it is clear that it is a phishing attempt posing as a notification from American Express concerning potentially suspicious account activities. The individuals behind this phishing scheme... Read more
CoV Ransomware Belongs to the Xorist Family of Clones
CoV is a ransomware variant associated with the Xorist family. Upon infecting a computer, CoV encrypts files and adds the ".CoV" extension to their filenames. Additionally, it alters the desktop wallpaper, displays an... Read more
FBot is a New Malicious Tool Targeting AWS
A recently discovered hacking tool named FBot, developed in Python, is now targeting a range of online services including web servers, cloud platforms, content management systems, and software as a service platforms... Read more
Snackarcin Antivirus Detection
The notification regarding PUAIDManager:Win32/Snackarcin indicates a problem with your computer that requires attention. Ignoring it may result in severe consequences. Snackarcin is a malicious application designed to... Read more
Binance x MetaMask Partnership Scam
After examining the page in question, we determined that it is a deceptive scheme masquerading as a giveaway through an airdrop event, purportedly organized by Binance and MetaMask. Orchestrated by fraudsters, the... Read more
OPTIMISM Airdrop Scam
After examining "OPTIMISM Airdrop," we concluded that it is a scam. This deceptive scheme falsely presents itself as an airdrop for the Optimism (OP) cryptocurrency but, in reality, functions as a means to drain... Read more
CommonValue Adware
Following analysis, it has been determined that CommonValue displays characteristics consistent with adware. While active, it subjects users to bothersome advertisements and may also be designed to gather diverse... Read more
AeR Ransomware is Based on Dharma Code
AeR, a malicious program affiliated with the Dharma ransomware family, encrypts files and demands ransoms for their decryption. AeR encrypts files and modifies their names by appending a unique ID assigned to the... Read more
Pings Ransomware Promises Decryption of One Sample File
Pings is a type of malware that came to our attention during the examination of new malware samples. Our analysis revealed that Pings operates as ransomware, aiming to encrypt files, present a ransom note labeled... Read more
Betterconnection.co.in Shows Deceptive Prompts
The website Betterconnection.co.in employs aggressive tactics to prompt internet users into enabling push notifications on their web browsers. If users willingly or mistakenly grant permission for these push... Read more
OpticalUpdaterfld Adware
OpticalUpdater is a type of adware that exhibits characteristics of a browser hijacker. Upon successful infiltration, it initiates aggressive advertising campaigns and endorses counterfeit search engines by altering... Read more
Earthheartsmith.top Attempts to Mislead Visitors
Earthheartsmith.top is a misleading website causing issues for numerous online users. It employs deceptive tactics, persuading individuals to consent to receiving notifications and subsequently inundates their phones... Read more
Geikal.co.in Shows Misleading Pop-Ups
Following a brief investigation, we found that geikal.co.in employs a clickbait strategy to lure visitors into granting permission for notifications. In addition to displaying misleading content, websites like... Read more
CookiesHelper Ransomware Will Lock Your Files
CookiesHelper, a type of ransomware identified during the examination of new malware samples, is designed to encrypt files. Upon encryption, it appends the ".cookieshelper" extension to filenames, transforming, for... Read more
Mango Ransomware is Based on Phobos
The Mango ransomware, a malicious program identified by our researchers, belongs to the Phobos ransomware family. Mango operates by encrypting files and demanding payment for their decryption. Upon executing a sample... Read more
