Threats
Buyadvupfor24.com Uses Fake Anti-Bot Check
During our research on websites using deceptive advertising networks, we came across buyadvupfor24.com, which is known to display false content that lures visitors into subscribing to notifications. This website is... Read more
Triathlon Gurus Rogue Browser Extension Can Be Annoying
During our examination of the Triathlon Gurus application, we discovered that it is actually a browser hijacker that promotes a fake search engine known as privatesearchqry.com. This search engine is not genuine and... Read more
Grand Explorer is Adware Posing as an Application
Grand Explorer is a type of malicious program that takes over your browser settings and displays unwanted advertisements while browsing. It modifies your browser homepage and search engine and injects ads into... Read more
Alldespard.com Uses Fake Anti-Bot Check to Spam Ads
Alldespard.com is a website that employs deceitful tactics to lure users into subscribing to its push notifications, which it then uses to inundate their devices with spam notifications. Essentially, Alldespard.com is... Read more
LOBSHOT Malware Used in Malvertising Campaign
Earlier this year, Elastic Security Labs, in collaboration with the research community, detected a significant rise in the use of malvertising. Attackers utilized a sophisticated strategy of creating phony websites... Read more
Everything Music Browser Extension Acts as Hijacker
While analyzing the Everything Music browser extension, we discovered that it acts as a browser hijacker, with the aim of promoting a fake search engine called finddbest.co. Everything Music achieves this by altering... Read more
Opencaptchahere.top Uses Fake Captcha to Push Ads
During our investigation of suspicious websites, we came across opencaptchahere.top which was found to employ misleading tactics to persuade visitors to allow notifications. Opencaptchahere.top is known to redirect... Read more
Fofd Ransomware Joins Djvu Clone Family To Encrypt Files
Our research team discovered Fofd, a ransomware belonging to the Djvu family, during the review of recently discovered malware samples. Fofd encrypts files on the victim's computer and demands a ransom payment in... Read more
Beware of Lookaside.fbsbx.com Adware
Lookaside.fbsbx pop-up messages can unexpectedly appear on your screen, covering the content you were viewing or opening your browser without your consent. Clicking on these ads can lead to the installation of... Read more
Mograppido.com Uses Bait to Push Annoying Ads
During our investigation of mograppido.com, our team discovered that this website engages in deceptive practices in order to lure visitors into subscribing to push notifications. Our analysis also revealed that... Read more
Sato Ransomware Doubles Ransom Demand in Three Days
While analyzing new malware samples, our team encountered Sato ransomware, which is a member of the Djvu family. Sato is capable of encrypting files on a computer and appending the ".sato" extension to their... Read more
Ourpcthreatremover.site Displays Fake Virus Warnings
If you find yourself constantly redirected to Ourpcthreatremover.site, it's likely that a malicious program or unwanted browser extension has been installed on your device. This site is known for its use of fake... Read more
Econsultingcoem.com Tries to Mislead Visitors
During our examination of suspicious sites, we came across econsultingcoem.com, a deceitful webpage that promotes browser notification spam and redirects visitors to other dubious pages. These sites are usually... Read more
AttackSystem Ransomware Targets Large Entities
During our investigation of newly submitted programs to the VirusTotal website, our research team uncovered a ransomware-type program called AttackSystem that belongs to the MedusaLocker ransomware family. We tested... Read more
What is Acwzmain.accde Malware?
Acwzmain.accde is a genuine file developed by Microsoft for Windows systems and is usually located in C:\Program Files (x86)\Microsoft Office\root\Office16\ACCWIZ\ACWZMAIN.ACCDE. However, certain trojans can... Read more
What is the CyclinGuru Rogue Browser Extension?
After analyzing the CyclinGuru browser extension, our team discovered that it modifies the settings of a web browser to promote a phony search engine called privatesearchqry.com, making it a browser hijacker. The... Read more
Saba Ransomware is a Djvu Clone That Seeks Files For Encryption
During our examination of malware samples, we came across Saba, which is a ransomware variant belonging to the Djvu ransomware family. Saba encrypts files and modifies their filenames by appending the ".saba"... Read more
Realbeyondcook.com Abuses Push Notifications
Realbeyondcook.com is a website that utilizes the browser's built-in push notifications system to send spam notifications directly to your device, including computers and phones. This site is malicious and attempts to... Read more
