Backdoor Malware Used Against Ukrainian Defense Entities
A new .NET-based backdoor, named DeliveryCheck (also known as CAPIBAR or GAMEDAY), has been identified, specifically targeting the defense sector in Ukraine and Eastern Europe. This sophisticated backdoor has the... Read more
Read-the-notification.com Uses Fake Video as Bait
Read-the-notification.com operates as a deceptive website that engages in the distribution of browser notification spam and redirects users to potentially suspicious or malicious websites. The majority of individuals... Read more
Cropsibagen.com Uses Misleading Anti-Bot Check to Spam Ads
Cropsibagen.com functions as a deceptive webpage that forcefully displays spam browser notifications and redirects users to potentially unreliable or harmful websites. Most visitors access cropsibagen.com and similar... Read more
Chinese Threat Actor Targets Mobile Devices with New Spyware
The highly active nation-state group known as APT41 has been associated with two previously unknown types of Android spyware called WyrmSpy and DragonEgg. APT41, also known as Axiom, Blackfly, Brass Typhoon, Bronze... Read more
FormatClick Mac Adware
During our examination of new file samples, we came across an application called FormatClick. After conducting a thorough investigation, we determined that FormatClick is categorized as adware and is associated with... Read more
Mynvhefutrx Ransomware is a Snatch Clone
While examining newly submitted file samples, our research team made a significant discovery: the Mynvhefutrx malicious software. This particular program belongs to the Snatch ransomware family, a category of malware... Read more
'Sport background pictures new tab' Rogue Browser Extension
During our investigation of untrustworthy websites, our team came across an extension called "Sport background pictures new tab." This extension offers randomized sports-themed wallpapers for web browsers. Upon... Read more
Mitu Ransomware Will Scramble Your Data
During a routine evaluation of new file submissions, our team of researchers made an important discovery - the Mitu ransomware. This particular malicious software belongs to the Djvu ransomware family and operates by... Read more
Raasv2 Ransomware Demands Bitcoin Ransom
Our team recently came across Raasv2, a type of ransomware, during our analysis of new file samples. Upon examining it, we discovered that Raasv2 operates by encrypting files, changing their names, and generating a... Read more
Space Spiders Rogue Browser Extension
After conducting an analysis of Space Spiders, our team discovered that it operates as a browser hijacker, altering specific browser settings and promoting a fake search engine known as search.spacespiders.net.... Read more
DesignationDrive Mac Adware
Our research team recently identified DesignationDrive, an adware-type application, during the analysis of new submissions to the VirusTotal platform. DesignationDrive belongs to the AdLoad malware family and is... Read more
Miza Ransomware is an Offshoot of Djvu Targeting Files for Encryption
During an examination of new file samples, our team of researchers discovered Miza, a ransomware program. Miza belongs to the Djvu ransomware family, a category of malware that encrypts data and demands payment in... Read more
