Threats
Pig865qq Ransomware Encrypts Systems
During our routine analysis of malware samples submitted to the VirusTotal website, we have detected the Pig865qq ransomware, which belongs to the GlobeImposter family. Pig865qq encrypts files, adds the ".Pig865qq"... Read more
Mastason.com Uses Fake Adult Content as Lure
While investigating potentially problematic websites, our team discovered the mastason.com rogue page. This website is made solely to endorse browser notification spam and redirect users to other sites, which are... Read more
'Truist Online Banking Profile' Email Scam
The email in question has been identified as a fraud, specifically a phishing attempt conducted by scammers aiming to acquire sensitive information from recipients. Their goal is to trick recipients into opening the... Read more
Abyssalforge.top Shows Misleading Pop-Ups
Abyssalforge.top employs deceptive tactics to manipulate users into activating push notifications, subsequently inundating devices with intrusive and disruptive advertisements. This website is categorized as both a... Read more
'Password Change Request' Email Scam
The email in question has been identified as a fraudulent scheme orchestrated by scammers aiming to acquire personal information, a common tactic known as a phishing email. In this particular case, the email pretends... Read more
WannaDie Ransomware Uses Bilingual Ransom Note
Our researchers identified the WannaDie ransomware during an examination of new malware samples. Ransomware is designed to encrypt data with the intention of compelling victims to pay for its decryption. Upon... Read more
IMAPLoader Malware Linked to Iranian Threat Actor
The Iranian threat actor known as Tortoiseshell, also tracked by names such as Crimson Sandstorm, Imperial Kitten, TA456, and Yellow Liderc, has been attributed to a new wave of watering hole attacks involving the... Read more
Lightninganvil.top Pushes Intrusive Ads
The webpage Lightninganvil.top was discovered by our researchers during an investigation into suspicious sites. This site is built to facilitate browser notification spam and direct users to other websites that are... Read more
Streamvideoplayer.co.in Uses Fake Video to Bait Victims
Our research team identified the rogue site streamvideoplayer.co.in during an examination of suspicious websites. This site functions by promoting browser notification spam and redirecting visitors to other sites that... Read more
SearchToDo Browser Extension
While investigating suspicious websites, our researchers came across the SearchToDo browser extension. Although it is promoted as a tool for creating to-do lists and taking notes within the browser, its actual... Read more
Theamdads.com Abuses Push Notifications
The website Theamdads.com engages in push notification scams to trick users. Despite presenting itself as a legitimate site, it deceives unsuspecting users into subscribing to its notifications. Typically, users are... Read more
Trap Stealer Malware
TrapStealer, a versatile malware designed for information theft, is known for its ability to target a broad spectrum of data, with a particular focus on information associated with the Discord messaging platform. Once... Read more
1337 Ransomware Encrypts Majority of Files
During a routine examination of new file samples, our research team identified 1337 ransomware. This type of malware is specifically designed to encrypt files, leading to ransom demands for their decryption. On our... Read more
Naturey New Tab Extension
Promoted as an extension that showcases nature-themed browser wallpapers, Naturey New Tab came to our attention during an examination of unreliable websites. Upon thorough inspection, our research team determined that... Read more
Serpent Stealer Malware
Serpent is a lightweight malware classified as a stealer, designed to target log-in credentials and sensitive information from browsers and various applications. Upon successful infiltration, Serpent initiates the... Read more
Inspire Me Tab Browser Extension
Upon closer examination, it was determined that the Inspire Me Tab extension functions as a browser hijacker. The primary goal of the Inspire Me Tab application is to take control of a browser by manipulating its... Read more
GoTiS Ransomware Based on Xorist
Our research team detected the GoTiS ransomware during a routine examination of new file submissions. This malicious software is affiliated with the Xorist ransomware family and operates by encrypting data, demanding... Read more
Jzqe Ransomware Encrypts Popular File Types
In the analysis of recently discovered malware samples, a variant of the Djvu ransomware, identified as Jzqe, has been detected. Jzqe functions by encrypting files and modifying their file names by adding the ".Jzqe"... Read more
