Threats
W97M.Downloader Malware
W97M.Downloader is the designation given to a piece of malicious software that was actively distributed in a campaign spreading banking malware that was most active in early 2016. The malware in question comprised a... Read more
Win32/Heri Detection
Win32/Heri is the name given by antivirus software to a heuristically-motivated detection. This means that the detection does not correspond to a specific known virus or malicious file found in the software's... Read more
How to Avoid Goograriva.com Ads
Goograriva dot com is a misleading website, set up with the exclusive purpose to spam visitors' browsers with ads. When a user lands on Goograriva dot com, they're greeted with a fake web video player image and text... Read more
Ourcoolblog.com Pushes Ads Through Fake Anti-Bot Check
Ourcoolblog dot com is one of the hundreds of very low-effort misleading websites that are online and only multiply with every passing week. The purpose of those pages is always one and the same - to get as many... Read more
HelloXD Ransomware Goes for Double Extortion
A research team with Palo Alto Networks has picked apart a relatively recent ransomware strain. The ransomware is called HelloXD and was first spotted in the last months of 2021. HelloXD is the type of ransomware gang... Read more
FrequencyPlatform Adware
FrequencyPlatform is a piece of adware that can affect Mac computers. It is part of the broader family of AdLoad adware that can affect Macs. FrequencyPlatform is an app that will show up in your Applications folder,... Read more
What is the ClientPcSpeedup Rogue Optimization App?
ClientPcSpeedup is the generic detection name used by antivirus software to flag a specific type of potentially unwanted app, namely - rogue optimization apps. Potentially unwanted apps are a gray area in software... Read more
Athree.xyz Tries to Scare Computer Users with Fake Virus Detections
Athree dot xyz is one of the dozens of similar pages set up online with a simple goal - to push ads in the visitor's browser. Similar misleading websites can have the specific content displayed on them change... Read more
StealBit Malware
StealBit is the name of a piece of infostealing and data exfiltration malware that is a companion tool to the infamous LockBit ransomware. StealBit, as the name implies, is used to exfiltrate and steal sensitive... Read more
Grt Ransomware
The Grt ransomware is a newly discovered strain of file-encrypting malware. The ransomware belongs to the broader family of Phobos ransomware clones, sharing code similarities with them. Grt will encrypt files on the... Read more
How to Avoid "Ads Skipping Over" Ads
Ads Skipping Over is the rather unusual name of a Chrome browser extension that is even offered on the Chrome web store. According to the extension's own description, its purpose is to "skip or block" advertising in... Read more
'Loyalty Program' Scam Uses Fake Prizes to Phish Visitors
There is yet another scam making the rounds online, this time called simply the "Loyalty program" scam. The gist of the scam is simple - visitors who land on websites and domains running the scam are offered to take a... Read more
Home Search Design Browser Hijacker
Home Search Design is the name of a browser hijacker. It can affect most popular browsers, including Chrome and Firefox. Like the vast majority of browser hijackers, Home Search Design can change a number of browser... Read more
EasyHandler Adware
EasyHandler is the name of a piece of software for Mac computers that exhibits behaviors typical of advertising-supported apps or adware. EasyHandler can be found in your Applications folder on your Mac. It offers no... Read more
Cinemate Adware
Cinemate is a Chrome browser extension that also exhibits signs typical for ad-supported software or adware. Cinemate has the ability to generate and display advertising in the user's browser. This would not be a huge... Read more
Hkgt Ransomware
The Hkgt ransomware is one of the dozens of Djvu ransomware variants that have sprouted up in the last few weeks. The ransomware does everything you would expect it to do, just like its clones. It encrypts media,... Read more
Fullsecuritysystem.com Pushes Fake Virus Warnings
Fullsecuritysystem dot com is the name of a misleading website that is used to push fake virus warnings. When you land on Fullsecuritysystem dot cum, very likely ending up there after you clicked a rogue ad on a... Read more
Freepotato.fun Pushes Ads in Your Browser
Freepotato dot fun is a misleading website. Its only purpose is to coax visitors into allowing ads on their browsers, so that the page can use push notifications functionality to spam intrusive and potentially harmful... Read more
