TRAPGET Ransomware

Posted: September 24, 2020 | Category: Ransomware
The TRAPGET Ransomware is a file-locking Trojan that's part of the Russian NEFILIM Ransomware family. The TRAPGET Ransomware attacks may compromise business entities preferentially and hold their servers' files for ransom by encrypting them. Users with backups have alternative recovery possibilities, and most Windows anti-malware services should delete the TRAPGET Ransomware after automatic detection. Hackers may come from anywhere, but Russian dark Web resources have a close connection to Ransomware-as-a-Services and similar encryption-and-extortion attacks. Consequentially it's not...

CRPTD Ransomware

Posted: September 24, 2020 | Category: Ransomware
The CRPTD Ransomware is a file-locking Trojan that blocks media files and holds them hostage by encrypting them. The CRPTD Ransomware also creates ransom notes using a previously-known HTA template that sells the victims a possible unlocking service. Most updated anti-malware products should thwart infection attempts or uninstall the CRPTD Ransomware, and traditional backup practices can assist with inexpensive data recovery. Not all file-locking Trojans have a definitive lineage. Such puzzles only become convoluted with the incestuous 'burrowing' of ideas and resources between...

OldGremlin

Posted: September 24, 2020 | Category: Malware | Threat Level: 6/10
OldGremlin is a threat actor specializing in compromising corporate entities' servers and encrypting their files for ransoms. This group uses highly-sophisticated social engineering lures that can include convincing, industry-specific details, and a back-and-forth messaging focus over weeks or months. Businesses should continue protecting their servers with appropriate backup practices and security protocols and have their anti-malware products isolate and remove threats from OldGremlin as soon as possible. The gremlin of modern folklore owes itself to Britain's air force members'...

Alien Malware

Posted: September 24, 2020 | Category: Malware | Threat Level: 6/10
The Alien Malware is spyware that collects confidential information from Android devices. As an upgrade of the previous Cerberus spyware, it keeps that threat's features and adds new ones and may block the device or provide a backdoor for attackers. Users should protect their devices with compatible anti-malware services for removing the Alien Malware as soon as possible and change compromised passwords and other credentials without delay. The powerful symbol of a phoenix burning to ashes and reviving in a new flame is just as appropriate for the threat landscape as it is mythology....

Lomurdened.club

Posted: September 23, 2020 | Category: Browser Hijackers | Threat Level: 5/10
The 'Please press Allow continuing' pop-ups have become one of the favorite tools that online fraudsters use to access your browser's notifications. Many people are eager to continue browsing, and they do not think twice about pressing the button that these pop-ups ask them to interact with. Tons of websites distribute such fraudulent messages, and Lomurdened.club is just one of the hundreds of websites that do this. Users who stumble upon Lomurdened.club's pop-ups may be told that they need to complete a human verification or anti-robot check to continue browsing. As you can probably...

News-gg.com

Posted: September 23, 2020 | Category: Browser Hijackers | Threat Level: 5/10
If your Web browser notifications have been hijacked by News-gg.com, then you most likely see dozens of unwanted browser notifications every time you try to browse your favorite website. Despite what News-gg.com's name implies, you can rest assured that this website has nothing to do with the latest news and updates from around the world – instead, its sole purpose is to deliver advertisements to you. The News-gg.com notifications do not possess content that you should trust or interact with because they may often promote shady products, services and Web pages. Another thing worth noting...

Yishowever.club

Posted: September 23, 2020 | Category: Browser Hijackers | Threat Level: 5/10
Yishowever.club is a fraudulent page that has one only purpose – to gain access to your Web browser's notifications by using misleading instructions and messages. According to Yishowever.club, users can continue to browse the Web, only if they confirm that they are not robots by clicking 'Allow' on the prompt shown to them. However, the 'Allow' button that Yishowever.club asks you to click is not related to your Web browsing experience and, instead, it is meant to grant the page permissions to use browser notifications. If Yishowever.club is given the permissions to use notifications, it...

HDSportsSearchs

Posted: September 23, 2020 | Category: Potentially Unwanted Programs (PUPs)
HDSportsSearchs is a browser extension whose installation may bring unforeseen changes to your Web browser's settings. This is not a harmful application by any means, but you should certainly not allow it to run on your computer because of the unwanted changes it brings. This tool is classified as a Potentially Unwanted Program (PUP), and you are unlikely to experience any trouble with it if you are keeping your system protected by a suitable security tool. The changes that HDSportsSearchs brings concern your Web browser configuration and, in particular, the default search aggregator and...

WebQuestSearch

Posted: September 23, 2020 | Category: Mac Malware
Mac users are not immune to non-trustworthy software that brings undesired changes to their system's configuration and behavior. In fact, we have seen a rapid increase in the number of Potentially Unwanted Programs (PUPs) and adware that target macOS computers exclusively. There are hundreds of these shady applications circulating online, and it is a matter of time to encounter one of them. It is best to be prepared for this moment by keeping your Mac device protected by a suitable anti-malware application. One of the Mac PUPs to trouble users in 2020 is called WebQuestSearch. It is often...

Gvlbsjz Ransomware

Posted: September 23, 2020 | Category: Ransomware
The Gvlbsjz Ransomware is a file-locking Trojan that keeps digital media files from opening by encrypting them. As part of the Snatch Ransomware family, it also generates text ransom note typical for that family's template, which provides data-unlocking services for an unknown price via e-mail. Users should withhold ransoms, if possible, have their anti-malware solution remove the Gvlbsjz Ransomware and use a backup for recovery. A new threat, the Gvlbsjz Ransomware, is reasonably indistinguishable from other variants of Trojans that share its genealogy but is a telltale sign of familial...

MoistStealer Malware

Posted: September 23, 2020 | Category: Malware | Threat Level: 6/10
A new infostealer coded in C# is being promoted among Russian cybercrime forums. The threat, dubbed the MoistStealer Malware, is being sold at very low prices starting from 499 Rubles or about $6.50. Needless to say, the low price tag allows any cybercriminal to grab a copy of the MoistStealer Malware and start using it against their selected targets. The threat is quite functional despite its affordable price. According to the author, customers will gain access to their victim's browser databases (Chrome and Mozilla) system information, Discord and FileZilla. The threat also can screenshot...

DuckRAT

Posted: September 23, 2020 | Category: Remote Administration Tools | Threat Level: 4/10
Remote Access Trojans (RATs) are amidst the most threatening malware types because of their ability to give a remote attacker full access to the infected computer. This malware often is being spread via torrent trackers, fake downloads, bogus email attachments, and other content that users are likely to find in non-trustworthy websites. A relatively unknown RAT has been detected online recently, and it has been given the name DuckRAT. The threat appears to have been around for over two years, but it is not very well-known because of its relatively low usage. The fact that the payload is...

AssistiveFile

Posted: September 22, 2020 | Category: Mac Malware
AssistiveFile is an annoying Mac program whose installer may bring unexpected and hidden changes to your operating system and Web browser's settings. For starters, AssistiveFile will manipulate the macOS 'Launch Daemon' and 'Device Profile' modules to grant itself persistence, as well as to change the settings of the Safari Web browser. The changes that AssistiveFile brings are not harmful, but users are unlikely to enjoy them since they will end up being redirected to unknown, 3rd-party websites on a daily basis. macOS users cannot download the AssistiveFile utility from an official...

Fortnite Hack Generator Pop-Up Scam

Posted: September 22, 2020 | Category: Adware | Threat Level: 2/10
Cybercriminals often use phishing pages and fake content to lure people into running malware on their computers or revealing personal and payment information. The 'Fortnite Hack Generator' pop-up scam works in this exact way – it promises to provide users with access to a functional Fortnite hack but asks them to enter the username and password they use for the Epic Games store. Of course, once the data is submitted, it will not be used to verify your account and, instead, it will end up in the hands of the criminals operating the site. A version of the 'Fortnite Hack Generator' pop-up...

Mypushz.com

Posted: September 22, 2020 | Category: Browser Hijackers | Threat Level: 5/10
Mypushz.com is a Web page that you may encounter when trying to find streaming videos online – movies, TV series, sports events, etc. Of course, you will see Mypushz.com if you visit shady pages linked to such content. Once Mypushz.com's website is loaded, it will display a fake warning saying that you need to click 'Allow' to continue streaming. However, if the button is pressed, you will get drastically different results – you will end up being subscribed to the Mypushz.com notifications. When Mypushz.com obtains the permission, you will begin to see content that Mypushz.com serves in the...

HDMusicStreamSearch

Posted: September 22, 2020 | Category: Potentially Unwanted Programs (PUPs)
HDMusicStreamSearch is a browser add-on that may pique your interest by offering to provide you with awesome music streaming solutions that are free to use. However, users who agree to install HDMusicStreamSearch may soon realize that the features this add-on offers are rather misleading. For starters, HDMusicStreamSearch does not host a streaming service on its own and, instead, it simply provides users with links to popular online music streaming services that may not always be free. While this is not an issue, there are other things that HDMusicStreamSearch does that you might find...

AnyMovieSearch

Posted: September 22, 2020 | Category: Potentially Unwanted Programs (PUPs)
AnyMovieSearch is a browser add-on that can cause some minor annoyances as soon as it is installed on your computer. Thankfully, AnyMovieSearch does not exhibit harmful behavior, and you should not worry about your online safety if you find this add-on on your computer. However, this certainly does not mean that you should ignore the harmless things it does. One of the typical changes that AnyMovieSearch brings to your Web browser is to introduce Portal.anymoviesearch.com as the default new tab page, and Feed.anymoviesearch.com as the default search aggregator. These minor changes may...

Zhen Ransomware

Posted: September 22, 2020 | Category: Ransomware
The Zhen Ransomware is a file-locking Trojan that keeps digital media files, such as documents, as hostages while it demands a ransom. This Trojan includes an unusually sophisticated pop-up with features such as a payment tracker, scrolling text, and a wallet address-copying button. If possible, users should ignore ransoms, have a trusted anti-malware product removing the Zhen Ransomware, and recover any files from an unaffected backup. Bucking the standards of more-typical Ransomware-as-a-Services or Hidden Tear spin-offs, some file-locking Trojans of independent origins are more...

Rampant Kitten APT

Posted: September 22, 2020 | Category: Advanced Persistent Threat (APT)
The Rampant Kitten APT is a threat actor typically associated with spyware-based attacks against opponents of the Islamic Republic of Iran. This group uses heavily-customized spyware for collecting credentials such as Telegram logins, which it supplements with other tools and infrastructure, such as phishing websites. Users should monitor both PCs and other devices for possible security breaches and allow anti-malware tools leeway for removing any threats associated with the Rampant Kitten APT. Most Advanced Persistent Threats (APT), inevitably, give signs of their political leanings...

Egcuniformer.club

Posted: September 21, 2020 | Category: Browser Hijackers | Threat Level: 5/10
Seeing unwanted notifications in your Web browser is usually caused by giving a non-trustworthy website the permissions to use your browser's notifications. One of the pages that uses such a fraudulent strategy is Egcuniformer.club. As soon as it shows up in your browser, it will tell you that you need to complete an anti-robot check. Allegedly, the user can do this by clicking 'Allow,' but the result of this action will be entirely different. Once the 'Allow' button is pressed, you will be subscribed to Egcuniformer.club's push notifications. This minor change is not harmful, but it has...
1 2 3 4 5 6 7 8 9 10 11 12 13 1,319
Home "Articles"