Ande Loader Malware Spreads Using Phishing
The threat actor Blind Eagle has been observed employing a loader malware named Ande Loader to distribute remote access trojans (RATs) such as Remcos RAT and NjRAT. These attacks, initiated through phishing emails,... Read more
WirelessBrowser Adware
Our researchers came across WirelessBrowser during their examination of new submissions to the VirusTotal website. Upon analyzing this software, we identified it as adware belonging to the AdLoad malware family.... Read more
Ultimatesafeguard.com Displays Fake Virus Scares
If you find that your browser keeps redirecting you to Ultimatesafeguard.com, it's likely due to an unwanted browser extension or a malicious program installed on your device. Ultimatesafeguard.com is a malicious... Read more
NerbianRAT Linux - Novel Malware Linked to Magnet Goblin APT
Check Point reports that a threat actor driven by financial motives has been focusing on exploiting recently discovered vulnerabilities in publicly accessible services to install Linux backdoors. Identified as Magnet... Read more
Bindusa.com Pushes Intrusive Ads
Bindsusa.com is a misleading webpage uncovered by our research team during an investigation into untrustworthy websites. Upon analysis, we found that this site promotes browser notification spam and redirects users to... Read more
Kopyex Crypto Scam
Kopyex.com is a deceitful cryptocurrency trading platform currently being advertised through an intricate scheme involving celebrities on social media. Through the use of deepfake or voice-modified videos, scammers... Read more
BlackRockFund Scam
The "BlackRockFund" scam operates as a fraudulent scheme aimed at draining cryptocurrency from unsuspecting victims. It seeks to establish an air of credibility by leveraging the name of BlackRock, a reputable... Read more
FractionView Adware
Upon inspecting the FractionView app, we've found that its main purpose is to bombard users with intrusive advertisements and potentially gather various types of user data. As a result of these findings, we've... Read more
My Crypto Tab Browser Extension
When we examined the My Crypto Tab application, we determined that this extension is designed to endorse a counterfeit search engine by assuming control over the user's browser. My Crypto Tab achieves this by... Read more
Classical Music New Tab Browser Extension
Our research team uncovered the rogue browser extension known as Classical Music New Tab during a routine examination of suspicious websites. Upon thorough analysis, we confirmed that this software operates as a... Read more
Paddisenglyzed.com Shows Fake Anti-Bot Check
Recently we have seen reports of users encountering intrusive pop-up notifications on their computers and mobiles, urging them to grant permission for notifications or activate push notifications from a website known... Read more
SearchMe Rogue Extension
While examining the SearchMe Extension application, we uncovered its function as a browser hijacker. Upon installation, it alters browser settings to promote a specific web address and may also collect various types... Read more