Chinese APT 'Flea' Targets US Institutions with Backdoor Malware
Researchers have discovered that a Chinese state-sponsored actor called Flea conducted a targeted campaign against foreign affairs ministries in the Americas between late 2022 and early 2023. According to the... Read more
Bhtw Ransomware Will Scramble Your Data
Bhtw, a variant of the Djvu ransomware family, demonstrates its file-altering capabilities by changing filenames such as "1.jpg" to "1.jpg.bhtw" and "2.png" to "2.png.bhtw." It's worth noting that Bhtw may be... Read more
Recutasseuccars.com Hides Ads Behind Fake Captcha
During our investigation, we uncovered a deceptive strategy employed by recutasseuccars.com to entice visitors into enabling notifications. Moreover, this website redirects users to other unreliable websites. Our team... Read more
Volume Extra Rogue Browser Extension
While investigating untrustworthy websites, our team discovered a rogue installer that contained Volume Extra, an allegedly advanced audio volume adjustment tool. However, upon further investigation, we determined... Read more
Sehen.site Browser Hijacker
The Sehen.site browser hijacker is a form of unwanted software that generates intrusive pop-up advertisements and redirects users to undesirable websites. It is typically installed without the user's awareness and can... Read more
Getgadsgroup.com Presents Visitors with Fake Bot Check
During our examination of websites utilizing illicit advertising networks, we stumbled upon getgadsgroup.com, a website employing a cunning strategy to entice visitors into subscribing to notifications. It's worth... Read more
What is the Safe Search Eng Browser Hijacker?
Safe Search Eng is a browser extension that takes control of your browser's search function and redirects it to an undesired search engine.Once Safe Search Eng is installed on your computer, it becomes a browser... Read more
100,000 ChatGPT Accounts Stolen and Put Up for Sale
Between June 2022 and May 2023, a significant number of compromised OpenAI ChatGPT account credentials, exceeding 101,100, have surfaced on illicit dark web marketplaces. Notably, India accounted for 12,632 of the... Read more
Bhui Ransomware Expands Family of Djvu Clones
While examining malware samples, our expert team made an intriguing discovery - the emergence of Bhui ransomware, a member of the Djvu ransomware family. Once a computer is infected, Bhui takes control by encrypting... Read more
Qasforsalesrepr.info Attempts to Push Ads Using Misleading Notifications
Qasforsalesrepr.info is a website designed to initiate push notifications. However, by granting permission and clicking "Allow" on the prompts, you expose yourself to potential risks such as third-party... Read more
What does InterfaceHelper Mac Adware do?
While examining new file submissions, we came across InterfaceHelper, a potentially unwanted application. Our analysis revealed that InterfaceHelper is adware associated with the AdLoad malware family. Its primary... Read more
Eren Yeager Ransomware is a Chaos Clone
During our examination of newly discovered files, our research team made a noteworthy discovery. We came across a variant of ransomware named Eren Yeager, which is derived from the Chaos ransomware. This particular... Read more