Gyew Ransomware is Based on Djvu Code
Our examination of recently discovered malware samples has uncovered the Gyew ransomware variant. Furthermore, it has been identified that Gyew is linked to the Djvu malware family. This particular ransomware variant... Read more
InfectedSlurs Botnet Exploits Zero-Day RCE Vulnerabilities
Akamai has identified a recently discovered Mirai-based DDoS botnet called InfectedSlurs, actively taking advantage of two zero-day vulnerabilities to infect routers and video recorder (NVR) devices. Although the... Read more
Password Reset Confirmation Email Scam
Upon examination of the "Password Reset Confirmation" email, we have identified it as spam. The message falsely claims that a request to change the password for the recipient's email account has been initiated. This... Read more
Fullwebsecuritydefender.info Shows Fake Virus Warnings
While investigating suspicious websites, our researchers came across the webpage fullwebsecuritydefender.info. This site is designed to promote scams and engage in browser notification spam. Furthermore, it has the... Read more
PikaBot Malware Deployed Alongside DarkGate
Phishing campaigns deploying malware families like DarkGate and PikaBot are employing strategies reminiscent of previous attacks involving the now-defunct QakBot trojan. According to a report from Cofense shared with... Read more
Gyza Ransomware Locks Systems
The ransomware variant known as Gyza, identified through an analysis of new malware samples, is connected to the Djvu family. Gyza encrypts files, adds a specific extension, and delivers a ransom note named... Read more
Flash Player - Emulator Rogue Extension
Our team uncovered the Flash Player - Emulator browser extension during the examination of suspicious websites. Despite being marketed as a tool to emulate the Adobe Flash Player, this software deviates from its... Read more
News-Wave Browser Extension
News-Wave, identified by our research team during an examination of questionable websites, functions as a browser hijacker. Its operation involves modifying browser settings to promote the news-wave.net fake search... Read more
WailingCrab Malware Distributed Through Email Campaign
Emails with a delivery and shipping theme are being employed to distribute a sophisticated malware loader known as WailingCrab. According to researchers from IBM X-Force, the malware comprises various components,... Read more
YOUSearch Browser Extension
YOUSearch is identified as a malicious browser extension that alters browser configurations, resulting in users being redirected to the deceptive search engine, yousearch.today. Additionally, this extension engages in... Read more
UpgradeIndex Mac Adware
UpgradeIndex is a malicious application notorious for infecting Mac computers, posing a significant risk to users. Belonging to the Adload malware family, this adware often accompanies other types of malware during... Read more
'BNB Chain Airdrop' Scam
The "BNB Chain Airdrop" is a fraudulent cryptocurrency giveaway disguised as an airdrop for the BNB (formerly known as Binance coin) cryptocurrency. The primary objective of this scam is to obtain the login... Read more