North Korean Threat Actor Deploys EarlyRat
Researchers have discovered that the threat actor known as Andariel, aligned with North Korea, utilized a previously unknown malware named EarlyRat in attacks exploiting the Log4j Log4Shell vulnerability last year. In... Read more
TUGA Ransomware Uses Concise Ransom Note
Our research team has come across a new form of ransomware called TUGA. This malicious software encrypts files, adding its distinct extension (".TUGA") to the original filenames. Additionally, it leaves a ransom note... Read more
Arrowtoldilim.com Abuses Push Notifications to Send Ads
During our analysis, we thoroughly examined the website arrowtoldilim.com and uncovered its deceptive nature, which aims to manipulate visitors into granting permission for notification delivery. The primary tactic... Read more
'American Express Security Team' Email Scam
Upon examining the email titled "Alert ! Card Purchase Declined" (subject may vary), we have determined that it is a fraudulent message impersonating the "American Express Security Team". The purpose of this spam... Read more
What is the Haffnetworkmm.com Browser Hijacker?
If you find that your browser keeps getting redirected to the Haffnetworkmm.com website, it is likely due to the presence of an undesirable browser extension or a malicious program on your device. Haffnetworkmm.com is... Read more
Crypto Exchange Infected With Novel Mac Malware
A group of researchers has made a groundbreaking discovery by uncovering previously unknown Mac malware that has infected a cryptocurrency exchange. This malicious software, known as JokerSpy, possesses a... Read more
Captchawave.top Uses Fake Bot Check
During our investigation of suspicious websites, our researchers came across the deceptive webpage called captchawave.top. This website aims to trick its visitors into granting permission for browser notification... Read more
Uudjvu Ransomware Encrypts Files
The Uudjvu ransomware presents a unique cyber threat through its file encryption process, which appends the .uudjvu file marker to locked data, rendering it unreadable. Unlike typical ransomware infections that lock... Read more
WAGNER Ransomware Tried to Piggyback on Recent Events
During our investigation of new file submissions, our team made a significant discovery regarding a ransomware variant known as WAGNER. This particular malware is specifically designed to encrypt files and... Read more
NetworkImagine Mac Adware
During our analysis of new file submissions, our team came across an unauthorized application known as NetworkImagine. Through our investigation, we determined that this application operates as adware and belongs to... Read more
8Base Ransomware Attacks Pick Up in Volume in Mid-2023
An under-the-radar ransomware threat known as 8Base has recently experienced a significant increase in activity during May and June 2023, according to researchers from VMware Carbon Black. This group employs... Read more
Tgpo Ransomware Will Lock Your System
In our thorough analysis of potential malware samples, our research team has uncovered a fresh variant of the Djvu ransomware family named Tgpo. This particular variation operates by encrypting data and appending the... Read more