Malware and Ransomware taking Mobile Devices by Storm with Millions of New Attacks

In recent years malware has taken on many different faces and has wreaked havoc on tens of millions of computer users around the world. Mobile devices are seeing a major uptick in the amount of malware targeting such devices. According to a recent Mobile Malware Evolution 2016 report from Kaspersky Lab, nearly 40 million attacks by malicious mobile software have been accounted for during 2016. The massively growing number of mobile devices to come under attack from some form of malware in the recent year is staggering. Not to mention, over 230 countries were ones targeted in mobile malware attacks during 2016, according to Kaspersky Lab’s report. Among the types of malware propagating throughout the world to target both computers and mobile devices, adware, Trojans and ransomware topped the list . Kaspersky detected over...

Posted on March 1, 2017 in Computer Security

Dot Ransomware

The Dot Ransomware is a ransomware Trojan that has been associated with a Ransomware as a Service (RaaS) provider. The providers of this harmful service allow their customers to create custom made ransomware Trojans while providing a Command and Control server and various forms of support. Con artists may distribute the Dot Ransomware using spam email messages or other methods, and the RaaS providers keep a percentage of the money that is collected from the victims affected by the Dot Ransomware. RaaS has increased in the market and is largely responsible for the sharp increase in ransomware Trojan infections in the last year. The Dot Ransomware itself was first observed in February 2017 and has been connected to corrupted email attachments using known tactics to trick inexperienced computers. People that want to use the Dot...

Posted on March 1, 2017 in Ransomware

‘helpmeonce@mail.ru’ Ransomware

The ‘helpmeonce@mail.ru’ Ransomware is an encryption ransomware Trojan that has been active since late February 2017. The ‘helpmeonce@mail.ru’ Ransomware encrypts its victims’ files and demands that the victim pays a ransom using BitCoins to a BitCoin wallet that has been linked to the email address that was the source for the ‘helpmeonce@mail.ru’ Ransomware’s name. The ‘helpmeonce@mail.ru’ Ransomware uses a sophisticated encryption method that is designed to make the victim’s files completely inaccessible. Once the victim’s files have been encrypted by the ‘helpmeonce@mail.ru’ Ransomware, they are no longer recoverable without access to the decryption key, which the con artists hold in their possession. The most likely way in which the...

Posted on February 28, 2017 in Ransomware

‘safeanonym14@sigaint.org’ Ransomware

The ‘safeanonym14@sigaint.org’ Ransomware is an encryption ransomware Trojan that is used to demand the payment of a ransom from victims after taking their files hostage. The ‘safeanonym14@sigaint.org’ Ransomware is unique in that it uses one hundred different email accounts to communicate with its victims to carry out payment. PC security analysts detected the ‘safeanonym14@sigaint.org’ Ransomware when analyzing a threat that was uploaded to online anti-virus scanners. It is common for cyber crooks to upload their threat creations in development to these online platforms as a way to test whether they are capable of evading detection. The ‘safeanonym14@sigaint.org’ Ransomware seems to be in development currently. In its present-day form, the ‘safeanonym14@sigaint.org’...

Posted on February 28, 2017 in Ransomware

AllInOneDocs Toolbar

The AllInOneDocs Toolbar program is advertised at allinonedocs.com claiming to provide users with an online office suite and enable them to create documents, presentations and projects in their browsers. According to allinonedocs.com, users are urged to install the AllInOneDocs Toolbar and benefit from ‘a FREE office suite.’ The AllInOneDocs Toolbar is developed by Mindspark Interactive Network, Inc., which is associated with questionable toolbars like the Internet Speed Tracker Toolbar , the 100sofRecipes Toolbar , and the AtoZManuals Toolbar . You should not expect Mindspark Interactive Network, Inc. to provide you with an office suite as they have no such products and services. The AllInOneDocs Toolbar is designed to change the new tab page layout, start page and default search provider of users to a custom version of...

Posted on February 28, 2017 in Possibly Unwanted Program

Parental Control Ads

The ads by Parental Control on pages you visit are associated with an adware under the name of Parental Control. The Parental Control adware is promoted as a parental filter you can install on computers your kids have access to. You may encounter the Parental Control adware listed under the ‘Advanced’ and ‘Custom’ options of free software bundles. The developers of the Parental Control adware have a site where their product is supposed to block ‘fishing sites’ as opposed to phishing sites and block adult content. Slogans like ‘Be sure web surfing protected!’ and ‘Keep you safety everywhere’ should make users doubt the literacy of those behind the Parental Control adware and their skills as programmers. However, the Parental Control adware performs quite well at its core...

Posted on February 28, 2017 in Adware

SurfDefense

The SurfDefense software is promoted at surfdefense.com as a Web filtering service that is supposed to monitor your outbound and inbound Internet traffic and block connections to untrusted pages. According to surfdefense.com, the SurfDefense program acts as an additional layer of protection on top of the existing virus protection. You may be suggested to install SurfDefense as a supplementary module to Google Chrome and Mozilla Firefox, which come with built-in security mechanisms that include the Google Safebrowsing and the Mozilla Phishing protection filters. Computer users that manage their finances online may appreciate what the SurfDefense program offers and wish to install it. SurfDefense is developed by ClickMeIn Limited that is a company associated with ad-supported products such as YellowSend and AnySend . PC users that...

Posted on February 28, 2017 in Adware

Terrific Shopper Ads

The Terrific Shopper software that you may find at Terrificshopper.do is promoted as a reliable shopping helper for users around the globe. Supposedly, Terrific Shopper relies on integration with browsers like Google Chrome, Internet Explorer, and Mozilla Firefox to provide its services. However, the Terrific Shopper program is recognized as adware, and you may want to avoid it. Computer security investigators report that the Terrific Shopper adware is a clone of the Torpedo Deals that works similarly to other adware such as the Cash Kitten and Price-Hero . You should note that the Terrific Shopper adware may be promoted on the Google Chrome Webstore and require the following privileges: Read and change all your data on the websites you visit. Read and change your browsing history. Evidently, the Terrific Shopper adware...

Posted on February 27, 2017 in Possibly Unwanted Program

SuperEx Ads

The ads brought by SuperEx to your screen are generated by adware and may not be safe. Computer users that notice the abundance of ‘Ads Powered by SuperEx’ on pages they visit may want to known that they may have been infected with the SuperEx adware. Computer security researchers note that the SuperEx adware is not a threat, but it may redirect users to phishing pages and show misleading images, video and text. PC users may install the SuperEx unknowingly by handling freeware bundles with the ‘ Express’ or ‘Typical’ option. The SuperEx adware is reported to travel with programs such as ProxyGate and InstallFaster . We do not recommend users install software packages on the Windows OS without going through the ‘Custom’ and ‘Advanced’ options, which may reveal potentially...

Posted on February 27, 2017 in Adware

Barrax Ransomware

The Barrax Ransomware is one of the many variants of HiddenTear, an open source ransomware engine that was released in 2015 publicly for ‘educational purposes.’ Unfortunately, since its release, HiddenTear has spawned countless threats based on its code. The Barrax Ransomware is just one of the many ransomware Trojans that have been released since August 2015, when HiddenTear first made its appearance. The Barrax Ransomware was first released in February 2017 and is likely to be distributed using corrupted email attachments, as well as by bundling threats with free software and media distributed online for free or through file sharing websites and networks. Once the Barrax Ransomware infects a computer, it will make the victim’s files inaccessible completely to demand the payment of a ransom. This is what makes the...

Posted on February 27, 2017 in Ransomware

‘wisperado@india.com’ Ransomware

The ‘wisperado@india.com’ Ransomware is an encryption ransomware Trojan that is part of a large family of ransomware known a Dharma. The ‘wisperado@india.com’ Ransomware was first observed towards the second half of February 2017 and is designed to attack high-profile targets such as corporate networks and Web servers. Although the ‘wisperado@india.com’ Ransomware may be distributed in a variety of ways, the nature of the ‘wisperado@india.com’ Ransomware’s targets indicates that the two likely ways in which the ‘wisperado@india.com’ Ransomware may be distributed include targeted phishing email messages and hacking into a compromised computer directly. The first attacks reported involving the ‘wisperado@india.com’ Ransomware were of affected servers. The...

Posted on February 27, 2017 in Ransomware

‘800-941-043’ Pop-Ups

The ‘800-941-043’ pop-up windows in your browser that may originate from wincrashedalertinfo.xyz are not to be trusted. The ‘800-941-043’ notifications are shown on untrusted pages, which work as phishing domains. You may notice that the ‘800-941-043’ alerts are presented on a background that resembles the security alerts associated with the Google Safe Browsing. However, the 800-941-043 phone line is not operated by the staff at the Google Corp. Computer users that load content on wincrashedalertinfo.xyz and cloned pages may be unable to switch tabs, open bookmarks and minimize their browser. The problem is caused by a JavaScript hosted on the page you loaded. Web designers associated with fake computer support companies use JavaScript to prevent the browser from working properly and use it as a...

Posted on February 27, 2017 in Adware

SuperCouponPro

The SuperCouponPro Toolbar software is a re-branded version of the GetCouponsFast Toolbar , which may be released by Mindspark Interactive Network, Inc. with freeware bundles. SuperCouponPro Toolbar may be promoted via advertisements shown to users infected with adware. Both pages for SuperCouponPro Toolbar and GetCouponsFast Toolbar feature the same design and can be found at supercouponpro.com/index.jhtml and getcouponsfast.com/index.jhtml. SuperCouponPro is offered to users for free as long they are not using the app commercially. Ad-supported software dominates the product line of Mindspark, and the SuperCouponPro Toolbar is no exception. Computer users that are looking to save money by using SuperCouponPro should read the End User License Agreement and Privacy Policy on eula.mindspark.com/eula/ very carefully. The...

Posted on February 27, 2017 in Possibly Unwanted Program

‘Error # 3658ad79cc3021a’ Pop-Up

The ‘Error # 3658ad79cc3021a’ warnings on your screen that appear to be generated by Support.microsoft.com are not to be trusted. The ‘Error # 3658ad79cc3021a’ warnings are not displayed by Support.microsoft.com but on untrusted sites like topkavsupport.com that host phishing content. Computer security researchers reveal that the ‘Error # 3658ad79cc3021a’ alerts are shown on a background that is a modified screenshot of the legitimate support page for Windows OS users at Support.microsoft.com. The ‘Error # 3658ad79cc3021a’ alerts are an example for tech support scam that is using logos and images of trusted portals to claim credibility and redirect users to uncertified computer support services. The 1-844-324-2398 toll-free phone line advertised on the ‘Error #...

Posted on February 24, 2017 in Adware

‘Error # S47452D’ Pop-Up

The ‘Error # S47452D’ pop-up messages are a classic example of misleading technical support messages. The ‘Error # S47452D’ notifications can be seen on pages such as computerdebuggingsystemweb[.]online and many others. The pages that host notifications similar to the ‘Error # S47452D’ pop-up might include a bad JavaScipt code to prevent your browser from operating properly. When your Internet browser opens a untrusted page related to the ‘Error # S47452D’ messages it reads the code of the page to present the content on your screen. Programmers employed by fake computer support companies enable sites like computerdebuggingsystemweb[.]online to show the ‘Error # S47452D’ notifications on a loop and obstruct users from switching tabs, opening bookmarks and minimizing the browser...

Posted on February 24, 2017 in Adware