Threats
How to Avoid Lepigthree.xyz Ad Pop-Ups
During our investigation of lepigthree.xyz, we discovered that the site is attempting to show unreliable notifications to users. By presenting a misleading message to visitors, lepigthree.xyz tries to convince them to... Read more
What is the Pejhfhcoekcajgokallhmklcjkkeemgj Rogue Browser Extension?
The pejhfhcoekcajgokallhmklcjkkeemgj virus is classified as a potentially unwanted program that can cause web browser redirect issues on users' computers. Typically, this virus appears in the form of a browser add-on... Read more
Money Message Ransomware is a Serious Threat Despite Goofy Name
Money Message is a type of malicious software that encrypts files and generates a ransom note named "money_message.log." Unlike other ransomware, Money Message does not change the names of files or add an extension to... Read more
Wikon Ransomware is an Xorist Clone Targeting Random Files For Encryption
While analyzing malware samples, our researchers came across a new variant of the Xorist ransomware family called WiKoN. This ransomware encrypts files, modifies their extensions by appending ".WiKoN," alters the... Read more
What is ExpandedOrigin Mac Adware?
During our investigation of ExpandedOrigin application, we discovered that it falls under the category of adware due to its intrusive advertising behavior. Adware is often distributed in questionable and deceitful... Read more
Chinese Threat Actor Employs Melofee Malware to Spy on Linux Systems
ExaTrack, a cybersecurity company based in France, has issued a warning about a newly identified Linux implant, named "Melofee," that has been used by the Chinese cyberespionage group Winnti to carry out targeted... Read more
Trojan:Win32/Casdet!rfn Malware Detection & Removal
Trojan:Win32/Occamy.C hacktool is a type of malware that often remains undetected on a user's device. While it may not show any obvious signs of its presence, the user may begin to notice changes in the performance of... Read more
Beware of 'Your Google Cloud Was HACKED' Pop-Up Scam
The "Your Google Cloud Was HACKED" pop-up is a type of push notification that utilizes false alerts to mislead users into clicking on it. It is a malicious push notification that impersonates renowned antivirus... Read more
OpcJacker Malware Uses Fake VPN to Spread
Since the second half of 2022, cybersecurity experts have identified a new form of malware that steals information called OpcJacker. According to researchers from Trend Micro, this malware can perform a variety of... Read more
Nitz Ransomware Ramps Up Ransom Sum in Three Days
Upon analyzing malware samples, we discovered a new variant of the Djvu ransomware family known as Nitz. Its primary goal is to encrypt files on the affected device and modify their names by appending the ".nitz"... Read more
Wigglewurm Unwanted Software Acts as Browser Hijacker
Wigglewurm is a piece of potentially unwanted software, classified as a browser hijacker due to its browser component. Once activated, Wigglewurm is capable of producing a continuous flow of advertisements on the... Read more
Niwm Ransomware is Another Generic Djvu Clone Targeting Files for Encryption
During the analysis of malware samples, our team of malware researchers identified Niwm, which is a type of ransomware belonging to the Djvu family. Ransomware is a type of malware that encrypts files, and Niwm is no... Read more
'Click Allow if you are not a robot' Browser Hijacker is an Annoying Push Notification
The statement "If you are not a robot, click allow" is a common feature found in browser hijacker software. While most computer users are aware of the importance of protecting their devices from viruses such as... Read more
'Your Computer Is Low On Memory' Pop-Up Scam Tries to Deceive Users
Deceptive pop-up windows claiming "Your computer is low on memory" are often displayed by rogue applications, such as adware, browser hijackers, and other potentially unwanted applications (PUAs). Some of these apps... Read more
BlackByteNT Ransomware Does Not List Ransom Amount
BlackByteNT is a type of ransomware that employs encryption to block access to files. In addition, it modifies the names of files by appending a ".blackbytent" extension and replacing their original names with a... Read more
How to Avoid Justcoolcaptcha.top Ad Pop-Ups
Upon examining the justcoolcaptcha.top website, we found that it deceives visitors by requesting permission to display notifications. This site may also redirect users to other similar sites. We detected... Read more
'YOUR APPLE COMPUTER HAS BEEN LOCKED' Pop-Up Scam
The fake pop-up error message "YOUR APPLE COMPUTER HAS BEEN LOCKED" falsely claims that a system infection has occurred and personal data has been stolen. The message is displayed by a malicious website that users... Read more
Cylance Ransomware Targets Both Windows and Linux
Our team of malware researchers discovered ransomware named Cylance, which is designed to encrypt files and prevent victims from accessing their data. Once installed on the system, Cylance adds the ".Cylance"... Read more
