The MICROPSIA malware family has been around since 2019, and the criminals behind it appear to have unleashed a new update to this malware family recently. The latest threat, dubbed PyMicropsia Malware, shares many similarities with the original project. However, this time the criminals have opted to rely on the Python programming language to craft the project. In its current state, the PyMicropsia Malware has been deployed in attacks against organizations and companies operating in the...

The 'HP Touchpad Not Working' issue is an input device problem where the sensor doesn't respond to user touch (cursor movement, mouse clicks, etc.) correctly. Although it can be a side effect of infection by Trojans and other threats, it usually results from settings or updates errors. Users of HP laptops, notebooks, tablets, and stand-alone touchpads should be able to resolve this problem and restore the touchpad's functionality through a series of free and user-friendly solutions. The...

The 'Audio Not Working in Discord' issue is an error with the Discord VoIP and text messaging program that may refer to muted audio, incorrect audio device output, or microphone problems. Typically, it isn't a significant security issue. Most users can resolve it by changing their Discord or audio device settings. The most-popular voice and text chatting application for gamers currently, Discord, is a highly-streamlined product, but not one without occasional glitches. The 'Audio Not...

Sonoffer.online is a website dedicated to tricking its visitors into unknowingly subscribing to intrusive Web browser notifications. Sonoffer.online hosts pop-ups telling visitors to confirm that they are real people by pressing the 'Allow' button displayed on their screen. Users who pay attention to the on-screen text may notice that this button serves a different purpose – it grants Sonoffer.online permission to use Web browser notifications. Unfortunately, many Internet users do not pay...

Veadoles.online is a deceptive website whose contents may show up in your Web browser while visiting non-trustworthy websites. This page's contents may claim to be protected by an anti-robot check, which users are asked to go through to continue browsing – however, the instructions on Veadoles.online are fake. Instead of confirming they are not a robot, visitors will end up enabling Veadoles.online's notifications in their Web browser unknowingly. Because of this minor change, they may end up...

The '1337x.to' ads are potentially-threatening Web advertisements from a peer-to-peer file-sharing website. Although the site, itself, doesn't host corrupted content due to poor vetting of advertising partners, it may inadvertently display tactics or attacks against your computer. Users should avoid illegal file-sharing resources, check their browser settings for vulnerabilities, and resolve any recurring and non-consensual '1337x.to' ads by any means necessary. The hunt for 'freebies' in...

Soap2day.to is a Web page popular among Internet users who avoid paying for movies and TV series by going after popular content. This illegal service hosts a large collection of pirated movies and TV series, as well as links to popular streaming sports events. However, there is a catch – the administrators of Soap2day.to are making money by hosting paid advertisements, which are often provided by non-legitimate online advertising agencies. This means that the Soap2day.to may often expose...

The Genesis Ransomware is a file-encryption Trojan designed to cause long-term damage to the files it accesses on the compromised system. The files, which this ransomware locks will be tagged with the '.genesis' extension at the end of their original names. Another change that the Genesis Ransomware brings is the creation of the document '!HELP!.txt,' which is usually stored on the desktop after the attack is executed. The destructive nature of Genesis Ransomware is not a surprise because...

The Leitkcad Ransomware is a file-encryption Trojan, which shares significant similarities with the file-locker family known as the Prometey Ransomware. Sadly, neither the Prometey Ransomware nor the newly identified Leitkcad Ransomware are decryptable via free utilities. If the latter has infiltrated your computer, you can probably not use your important files like documents, spreadsheets, videos, music, and more. This is because the contents of these files were encrypted by the Leitkcad...

The MoleRats APT launched another campaign targeted against the government and political entities in Egypt, the United Arab Emirates and Palestine recently. The criminals are now using a combination of backdoors – the DropBook Backdoor written in Python and the SharpStage Backdoor created via the .NET framework. The former is likely to be used as a first-stage payload, while the latter is a post-exploitation tool. The DropBook Backdoor stands out with its ability to use the public Facebook...

The SharpStage Backdoor is one of the latest new projects in the arsenal of the Advanced Persistent Threat (APT) actor tracked under the name MoleRats. Their most recent campaign involves two new malware samples, which have been given the names SharpStage and DropBook. The former is a .NET Trojan backdoor, which appears to be used against high-profile political figures in the United Arab Emirates, Egypt, Palestine and Turkey. The threatening file is delivered via phishing emails, which may...

The 'GeForce Experience Won't Open' issue is an accessibility error with the GeForce Experience control panel, which manages graphics settings. Although most features should be available through other software, this issue can be symptomatic of other problems, such as out-of-date drivers. Nvidia product users can choose several solutions for restoring accessibility under typical scenarios. Updating any out-of-date software should be on the initial 'to-do' list for any users experiencing...

The 'ERR_NAME_NOT_RESOLVED' Google Chrome error is an alert for domain name resolution failures, which can prevent websites from loading. Chrome users can resolve this problem by erasing their Web-browsing data, troubleshooting potential compatibility issues with related features and software, and resetting network-specific settings. Most users should be capable of removing this error without specialized assistance. Although not without its competition, Chrome has long held a place as one...

The program can’t start because MSVCP100.dll is missing from your computer' error is a message alerting users to a missing component of Visual C++, a compiler for the C, C++ and C++/CLI programming languages. Ordinarily, its appearance means that users can't access the program until they provide or repair the required file. Windows users have various means of resolving 'The program can’t start because MSVCP100.dll is missing from your computer' error messages for free. Tracking software...

Hdtop.pro is a deceptive page used to hijack Web browser notifications. Users are likely to come across this website because of online and pop-ups, usually encountered while looking for free streaming movies, TV series, or sports matches. The contents of Hdtop.pro are very simple – the page shows a video player, which says that the user must click 'Allow' to watch the video. However, doing this will not provide you with any streaming media. Instead, the 'Allow' button is meant to command your...

Whitenws.biz is a deceptive website, which may lie to users by telling them that they can download the file they were looking for as soon as they press the 'Allow' button on their screen. However, trying to follow Whitenws.biz's instructions will not let you download any file. Instead, you may accidentally enable Whitenws.biz notifications in your Web browser. Because of this change, the Web page will gain the ability to flood active Web browser windows with intrusive notifications. The...

Torrent9.so is not an unsafe website per se, but it is used to distributed copyright materials, pirated software/games, and other illicit digital content. As you may already know, trying to discover such content online can be a risky business, and visits to Torrent9.so are not an exception because of the advertising networks that Torrent9.so's operators work with. Seeing the 'Torrent9.so' ads may expose you to all sorts of risky content. It is not uncommon for these advertisements to promote:...

The authors of the Snopy Ransomware are extorting their victims for a ransom payment of $20. They hope to convince their victims to purchase a decryption tool, which will help them restore the files that were damaged during the Snopy Ransomware attack. The good news is that paying this small sum may not be necessary. This is because the Snopy Ransomware uses the file-encryption algorithm and features found in the Xorist Ransomware family, a low-quality piece of threatening software whose...

The XPCTRA Malware is a threatening piece of software used to collect payment information and other data from the systems it breaches. The malware appears to be most active in South America, but it is very likely that copies of it may be delivered to systems outside of the region as well. The XPCTRA Malware campaign was first identified in 2017, but the threat is still active in 2020. Usually, the XPCTRA Malware targets are approached via a spear-phishing email, which claims to contain...

Crypto-jacking campaigns are a very profitable scheme for cybercriminals, and the strategies used to execute them continue to evolve. Usually, attacks of this sort are carried out in the same manner. Still, cybercriminals are starting to experiment with various exploits and vulnerabilities to expand the reach of these attacks and plant as many cryptocurrency miners as possible. One of the latest projects of this sort is the PGMiner Botnet, and it targets a very specific list of devices – only...