Threats
Atomic Stealer Mac Malware Distributed on Telegram
Recently, cybersecurity experts uncovered a new information-stealing malware called Atomic macOS Stealer (AMOS), which is being sold by a threat actor on the messaging app Telegram. AMOS is specifically designed to... Read more
Top-search.xyz Pushes Fake Search Engine
According to our investigation, top-search.xyz is not a legitimate search engine. Typically, such fake search engines are distributed through browser hijackers that are unknowingly installed by users as apps or... Read more
Play-Video.online Uses Fake Anti-Bot Check
The website Play-Video.online is an untrustworthy site that deceives users into subscribing to its push notifications, which can lead to the delivery of unwanted spam notifications on their device. Play-Video.online... Read more
UNIZA Ransomware Leaves Filenames Intact
The ransomware program UNIZA is a type of malware that encrypts data and demands a ransom for its decryption. Unlike many ransomware programs, UNIZA does not modify filenames after encrypting files on the infected... Read more
'Bittrex Crypto Giveaway' Scam Uses Familiar Crypto Bait
During an investigation of fraudulent websites, our team uncovered the "Bittrex Crypto Giveaway" scam. It masquerades as a Bittrex promotion and offers to double up on the amount of cryptocurrency that users transfer... Read more
Oneettinlive.com Tries to Mask Intrusive Ads with Fake Anti-Bot Check
During our investigation of dubious advertising networks, our research team discovered oneettinlive.com - a website that engages in deceptive practices to encourage visitors to enable browser notifications. Such... Read more
Attack Ransomware is a MedusaLocker Variant
During an examination of new malware samples, our team of researchers came across a type of ransomware known as Attack. This malware, which belongs to the MedusaLocker ransomware family, encrypts data and requests... Read more
Anonymous Video Player is Adware Masked as a Browser Extension
During our investigation of suspicious websites, our researchers came across a browser extension called Anonymous Video Player. It is advertised as a tool that allows users to play and download videos in multiple... Read more
Sales Contract Email Scam Phishes for Victim Login Data
After analyzing the letter, we have come to the conclusion that it is a phishing email that aims to extract confidential information from its recipients. The email consists of an attachment that redirects to a fake... Read more
What is SkilledNetwork Mac Adware?
During the investigation of new app samples, our researchers came across an application called SkilledNetwork. Upon analysis, it was discovered that SkilledNetwork is a type of adware, which is a form of... Read more
Homerun Extension Will Swap Your Browser's Search
During our investigation of fraudulent websites, the Homerun Extension caught the attention of our research team. Marketed as a tool for easy access to the latest sports news and other content, our analysis of the... Read more
Foza Ransomware Attacks PCs Through File Encryption
During our analysis of malware samples, we identified the Foza ransomware. This ransomware encrypts files and modifies the file names by adding a ".foza" extension to them. Foza also creates a ransom note with the... Read more
Fast-redirectus.xyz Used Adult Content Bait to Push Ads
During our examination of suspicious websites, we came across a fraudulent web address known as fast-redirectus.xyz. The primary purpose of this webpage is to promote unwanted browser notifications and redirect users... Read more
MainWindow Adware Comes With Own Install Folder
MainWindow is a type of malicious program that forcefully modifies your browser settings, such as your homepage and search engine, and injects unwanted advertisements on the websites you visit. This malware is... Read more
RustBucket Mac Malware Attributed to BlueNoroff Threat Actor
Jamf, a mobile device management company, has identified a new malware called RustBucket that is being used to target Apple devices. The malware is believed to be associated with the BlueNoroff advanced persistent... Read more
Goacecelsurvey.space Uses Misleading Quiz
After conducting an investigation into goacecelsurvey.space, our research team discovered that it is a fraudulent survey site that asks users for permission to display notifications. Moreover, this site may redirect... Read more
Quick Close Tab is a Rogue Browser Extension
During our evaluation of the Quick Close Tab extension, we uncovered that it masquerades as a tool that is supposed to allow you to close the current tab in a context menu, but it actually displays advertisements. As... Read more
Foty Ransomware Asks for Initial Ransom of $490
If you find that you are unable to access your files, documents, or images due to a .foty extension, it means that your computer has been infected with the STOP/DJVU ransomware. This ransomware encrypts the files on... Read more
