Threats
Typo Ransomware Will Scramble Your Files Despite Goofy Name
During a malware sample analysis, our team of experts discovered a new variant of ransomware called Typo, which is believed to be associated with the Djvu family of ransomware. Similar to other types of ransomware,... Read more
P.rfihub.com Causes Bad Browser Redirects
If you find that your browser keeps redirecting you to the P.rfihub.com site, it could indicate that your computer has adware installed. P.rfihub.com is a legitimate advertising service used by website publishers to... Read more
Smartreviewglobal.com Uses Fake Warnings to Scare Site Visitors
During a routine examination of suspicious websites, we came across smartreviewglobal.com, a fraudulent webpage designed to promote scams and browser notification spam. This website is capable of redirecting users to... Read more
Tycx Ransomware Asks for $980 in Ransom Payment - Should You Pay or Not?
While examining malware samples newly submitted to online threat databases, our team identified a ransomware named Tycx. Upon further investigation, we discovered that Tycx is a member of the Djvu ransomware family... Read more
Why Reepratic.com Bad Redirects Are Dangerous
Reepratic.com is a harmful website that exploits the push notification feature of web browsers to display spam pop-up ads on the victim's device. The Reepratic.com site deceives users by displaying fake error messages... Read more
DeathRansom Ransomware Asks for Weird Ransom
During a routine check of new submissions to online threat databases, our team of researchers came across the DeathRansom ransomware, which belongs to the Chaos family of ransomware programs. Upon running a test... Read more
Tyos Ransomware Joins Army of Djvu Clones Targeting Multiple Files for Encryption
Our analysis of Tyos has revealed that this malware functions as a ransomware by encrypting files and adding the ".tyos" extension to their filenames. The ransomware also generates a ransom note named "_readme.txt".... Read more
Cool Facts is a Rogue Browser Extension
Cool Facts was discovered by our researchers while investigating suspicious websites. This browser extension is marketed as an add-on that provides users with interesting facts and offers wallpapers, clocks, and other... Read more
DotRunpeX Uses Process Hollowing to Spread Further Malware
A new type of malware known as dotRunpeX is being used to spread various known malware types like Agent Tesla, Ave Maria, BitRAT, FormBook, LokiBot, NetWire, Raccoon Stealer, RedLine Stealer, Remcos, Rhadamanthys, and... Read more
PuaBundler May Cause Security and Privacy Issues on Your Computer
PuaBundler is a malicious program that can take over a user's computer by gaining administrative privileges and controlling all processes in the system. This Trojan horse can be used for various malicious activities,... Read more
Urltiny.ru Uses Sneaky Social Engineering Tricks
Urltiny.ru is a deceptive website that pretends to be associated with reputable companies like Google, Amazon, or internet service providers, and displays a fraudulent survey page to lure unsuspecting users into... Read more
RefreshMate Adware Masqueredes as a Browser Extension
Upon downloading and testing RefreshMate, we discovered that it functions as a browser extension that displays irritating advertisements. As a result, we categorized RefreshMate as adware. Typically, such apps are... Read more
How to Avoid Prowimoniser.com Ads
Our research of prowimoniser.com uncovered that its primary purpose is to trick people into consenting to receive notifications and send them over to other untrustworthy sites. It takes advantage of users by using... Read more
'Webmail Account Maintenance' Email Scam Uses Old Tricks to Steal Login Credentials
The email titled "Webmail Account Maintenance" is a form of spam that poses as an alert from the Webmail service. The email claims that the user's email account has unresolved maintenance issues, and unless addressed,... Read more
Tywd Ransomware Joins Djvu Clone Family to Extort PC User Victims
Tywd is a type of malicious software known as ransomware that encrypts files on a victim's computer and demands payment in return for decryption tools. Our team encountered Tywd while monitoring for new malware... Read more
What is the SvcUpdater.exe Malicious Process?
SvcUpdater.exe is a form of virus that belongs to the Trojan family and can cause a variety of harmful actions within the system. Therefore, it is essential to remove SvcUpdater.exe from the infected computer as... Read more
ExilenceTG Ransomware is a New Key Group Variant
While analyzing malware samples, a new type of ransomware was discovered and named ExilenceTG by the researchers. The new variant is an offshoot of the Key Group ransomware. ExilenceTG encrypts files and adds the... Read more
Sport Engine Browser Hijacker Switches Browser Settings Without Permission
During an investigation into scam sites, our team came across the Sport Engine browser extension. The extension claims to offer users sports-themed backgrounds for their new tabs. However, upon further analysis, it... Read more
