SignalBalance

Posted: September 10, 2020 | Category: Mac Malware
SignalBalance is a Mac-exclusive program that often may be promoted as a useful utility meant to give the user access to exciting features. However, SignalBalance's true purpose is to bring intrusive changes to your Web browser's configuration, so that you will be redirected to 3rd-party websites on a regular basis. The pages that SignalBalance promotes may host a large number of advertisements, and it is possible that they may redirect users to non-trustworthy Web destinations. SignalBalance is classified as a Potentially Unwanted Program (PUP) for Mac. It is likely to reach your...

Tomas Ransomware

Posted: September 10, 2020 | Category: Ransomware
The Tomas Ransomware is a file-locker Trojan that blocks digital media files for ransom. The Tomas Ransomware shares most of its symptoms with other threats of this type, although it also delivers ransom notes with unique addresses and appends a custom extension onto the files. A majority of anti-malware programs will detect and remove the Tomas Ransomware from Windows environments immediately before losing files. Since their business operations tend to benefit from similar features, such as changes to files' names, cryptocurrency ransoms, and the all-important encryption of data,...

Eur Ransomware

Posted: September 10, 2020 | Category: Ransomware
The Eur Ransomware is a file-locking Trojan that's part of the Dharma Ransomware, a Ransomware-as-a-Service family. These threats will block the victim's files, such as most digital media, with encryption that usually is unbreakable by third parties. Appropriate anti-malware services may remove the Eur Ransomware or block its installation exploit and secure backups ca mitigate data loss significantly. Among file-locking Trojans, there exist philosophies catering to both the low and high customer demographics. For the Dharma Ransomware , the 'low' is paying off, with many threat actors...

OGDO Ransomware

Posted: September 10, 2020 | Category: Ransomware
The OGDO Ransomware is a file-locker Trojan that's part of STOP Ransomware's Ransomware-as-a-Service group. The OGDO Ransomware targets Windows systems and encrypts files, such as documents, so that they can't open. Users should schedule and secure backups for a complete recovery from any infections, and have a professional anti-malware service remove the OGDO Ransomware on its detection. There's increasingly-stiff competition among Ransomware-as-a-Services and independent equivalents of file-locking Trojans, but the STOP Ransomware remains a popular option for threat actors. Hackers...

A3C9N Ransomware

Posted: September 10, 2020 | Category: Ransomware
The A3C9N Ransomware is a file-locking Trojan that's part of a family of Trojans named Snatch Ransomware. The Trojan blocks most media on Windows computers for holding it hostage, after which, it sells a ransom-based unlocking service. Users should always protect any valuable files with backups and have compatible anti-malware tools active for safely deleting the A3C9N Ransomware. Ransomware-as-a-Services, in-house Trojan-creating kits, and 'freeware' like Hidden Tear all are responsible for the availability of file-locking Trojan software within the threat landscape. The deployment...

ThiefBot

Posted: September 10, 2020 | Category: Botnets
Android continues to be targeted by malware developers who release all threatening software types compatible with the popular mobile operating system. The most harmless bogus applications for Android tend to have basic features – they may show some advertisements here and there, or end up redirecting users to unknown websites. However, this post is about a new threat called ThiefBot. ThiefBot is meant to work as a banking Trojan that uses phishing prompts and abuses the Android accessibility service to gain access to a great fraction of the infected mobile device's data and features....

'Tik Tok Pro' Malware

Posted: September 10, 2020 | Category: Malware | Threat Level: 6/10
The Tik Tok Pro' Malware is spyware that compromises Android devices and collects information, mainly, but not exclusively, Facebook logins. The Trojan's campaign masquerades the installer as a fake installer for a premium version of the TikTok video-sharing application. Users can protect themselves by avoiding unofficial application links (such as those outside of curated storefronts) and let their anti-malware solutions remove 'the Tik Tok Pro' Malware as they detect it. Threat actors can use both politics and business trends for their pet interests, such as collecting information...

Vpnbestapp.com

Posted: September 9, 2020 | Category: Mac Malware
Vpnbestapp.com is an unsafe website that appears to target mobile users and, in particular, users with iOS devices. The contents of the Vpnbestapp.com use the icon style and colors used by the iOS operating system, and the website may claim that multiple threatening viruses have infected the user's device. The fake 'System Notification' claims that urgent action is required to prevent remote hackers from collecting data or damaging the device permanently. Seeing these messages on your phone can be a scary experience. Still, we assure you that Web browser pop-ups can never contain reliable...

Lorybnfh.com

Posted: September 9, 2020 | Category: Browser Hijackers | Threat Level: 5/10
Online con artists have started to drift away from the use of adware, and now they are looking for other opportunities to deliver advertisements to the Web browsers of random users. Currently, one of the most popular ways to achieve this is to hijack a Web browser's notifications. By using misleading or confusing instructions and messages, pages like Lorybnfh.com may trick visitors into granting them the ability to use Web browser notifications. While this is a great feature of modern browsers, undoubtedly, pages like Lorybnfh.com do not plan on using it for entertainment purposes. Instead,...

ProgressHelper

Posted: September 9, 2020 | Category: Mac Malware
ProgressHelper is a Mac program that may be installed without your knowledge. This may happen because ProgressHelper relies on fake promises or software bundles with misleading instructions to access your computer. Thankfully, this application does not have a threatening intent – instead, it wants to get the opportunity to tamper with your Web browser's settings so that you will be redirected to 3rd-party search engines on a regular basis. While this is not harmful, it may ruin your Web browsing experience because you will be forced to use a website that you are not familiar with....

TheConverterSearch

Posted: September 9, 2020 | Category: Potentially Unwanted Programs (PUPs)
TheConverterSearch is a misleading browser add-o that promises great things to its users. However, in reality, TheConverterSearch add-on is not very useful, and its primary purpose seems to be to bring more users to low-quality pages found at Feed.theconvertersearch.com and Portal.theconvertersearch.com. These websites will be set as your browser's search engine and new tab page, respectively. Because of these changes, you may experience a significant drop in your Web searches quality, since Theconvertersearch.com does not work as reliably as Bing, Yahoo, Google or other popular search...

TopMusicSearches

Posted: September 9, 2020 | Category: Potentially Unwanted Programs (PUPs)
TopMusicSearches is a useless browser extension that promises to give users the ability to discover cool new music and find the best online music streams. However, melomaniacs who wish to explore the music that TopMusicSearches offers may be disappointed to find out that this add-on has no such capabilities. Instead of providing useful content, TopMusicSearches focuses on setting the default Web browser search engine to Feed.topmusicsearches.com, and the new tab page to Portal.topmusicsearches.com. These changes are not threatening, but they may diminish your Web browsing and Web searching...

'Windows Error Code: DLL011150' Scam

Posted: September 9, 2020 | Category: Adware | Threat Level: 2/10
Browser-based tactics are still a perilous trick that online con artists use to take money and information from their victims. Often, fraudsters rely on misleading pop-ups and messages to trick users into thinking that their computers have been infected by a threatening virus or are experiencing severe issues with their operating system's health and performance. This is the strategy that the con artists behind the 'Windows Error Code: DLL011150' scam employ. Users who stumble upon the pop-ups related to this tactic may be told that the infamous  'Zeus' Trojan  has been found on their...

ThunderX Ransomware

Posted: September 9, 2020 | Category: Ransomware
The ThunderX Ransomware is a file-locker Trojan without ties to any famous families or Ransomware-as-a-Services. The ThunderX Ransomware can block the user's files with its encryption, delete local Windows backups, and create additional files related to the ransoming service. Users with other backups are immune to this extortion attempt virtually, and anti-malware programs can block or remove the ThunderX Ransomware from infected PCs. Between the many families of file-locking Trojans, individual equivalents are no less hostile to users' files. Although one might look at the ThunderX...

Cndqmi Ransomware

Posted: September 9, 2020 | Category: Ransomware
The Cndqmi Ransomware is a file-locking Trojan from the family of the Snatch Ransomware. The Cndqmi Ransomware can stop files from opening by encrypting them and may abuse Windows features like Safe Mode while it does so. Windows users with sufficient anti-malware protection should find and delete the Cndqmi Ransomware automatically, although having a secure backup for recovery is extremely helpful. As a Trojan family, the  Snatch Ransomware  is far from the most populous of its kind, and has dozens to hundreds of campaigns yet, before it catches up to competing options on the...

Jdokao Ransomware

Posted: September 9, 2020 | Category: Ransomware
The Jdokao Ransomware is a file-locking Trojan that's part of the larger family of the Snatch Ransomware. This Trojan runs in most Windows versions and encrypts the user's media files for blocking and ransoming them. Solutions to this threat include having backups for data restoration and letting anti-malware services contain and remove the Jdokao Ransomware. As a Trojan family, the  Snatch Ransomware  is a quieter and more particular example and lacks the extreme proliferation of counterparts like the  Djvu Ransomware  or the  Crysis Ransomware . Even so, it's a legitimate...

DeathRansom Ransomware

Posted: September 8, 2020 | Category: Ransomware
DeathRansom is a ransomware threat that has joined the actions of Wacatac Ransomware , which is believed to be its predecessor. The two threats may have been created by the same group of hackers who look to extort money from victimized computer users. The money extortion methods of DeathRansom start with its infection that may come in the form of a spam email attachment, often a "read-me.txt" text file that may appear to be harmless to most. Upon opening the malicious attachment, the affected system may then become infected with DeathRansom where the ransomware will render a ransom note...

Bmd Ransomware

Posted: September 8, 2020 | Category: Ransomware
The Bmd Ransomware is a file-locking Trojan from a Ransomware-as-a-Service family known as the Dharma Ransomware and the Crysis Ransomware. Immediate infection symptoms in Windows centralize around 'locked' or encrypted media files that will not open without the threat actor's custom decryption information. Users should have protected backups for recovering their files, even though anti-malware applications should delete the Bmd Ransomware quickly. An oppressive force inside the file-locker Trojan industry, the  Crysis Ransomware  can thank much of its prominence, and numerous...

Thergoldru.club

Posted: September 8, 2020 | Category: Browser Hijackers | Threat Level: 5/10
Thergoldru.club is a fake website that hosts a page dedicated to running a basic online tactic whose ultimate goal is to hijack your browser notifications. Thergoldru.club does this by displaying misleading prompts and messages that try to convince you that you have to confirm that you are a real human by pressing a button that says 'Allow.' What the page may not reveal is that the 'Allow' button is meant to grant Thergoldru.club permission to display browser notifications. Once the button is clicked, you will end up seeing dozens of Thergoldru.club notifications whenever you browse the Web...

'$1000 Venmo Gift Card' Pop-Up Scam

Posted: September 8, 2020 | Category: Adware | Threat Level: 2/10
The Venmo payment service has become very popular in the past few years. Unfortunately, this has attracted the attention of fraudsters and con artists who are looking for a way to profit from naïve victims. One of the most popular Venmo-related tactics online is the '$1000 Venmo Gift Card' pop-up scam – it tries to trick users into believing that they have won $1,000 that will be deposited to their Venmo account as long as they follow the instructions. The tactic is disguised to look like a mini-game, where the potential victim has to open the correct prize boxes – the catch is that all...
Home "Articles"