Top Security News

Beware: Cybercriminals Leveraging Coronavirus to Exploit Computer Users and Spread Malware It hasn't taken a lot of time for threat actors to realize the social engineering opportunity that the novel coronavirus (2019-nCoV) has presented them. The respiratory infection that originated in...
Infections Abound as Computer Malware Exploiting COVID-19 Coronavirus Spreads Rapidly Adding to Worldwide Hysteria There's no doubt that the Coronavirus has created a worldwide hysteria and pandemic from having a negative impact on many economies to pressing government officials to hold conferences addressing...
Hackers Exploiting Coronavirus Fears To Push Malware As the Covid-19 pandemic goes into full swing, we see increasing numbers of hackers and nation-state actors trying to exploit the global fears for their own gains, spreading malicious software...

Top Articles

WebDiscover Browser

WebDiscover Browser screenshot

WebDiscover Browser is an adware threat developed by a Canada-based company named WebDiscover Media. Once installed on a PC, the malicious app makes a series of unwanted changes to all browsers installed on the computer, leading to a deteriorating online surfing experience. WebDiscover replaces the default home pages and search engines of affected Internet browsers with its own WebDiscover Homepage and WebDiscover Search, respectively. Furthermore, the malicious app modifies the “new tab” settings so that the corrupted browsers launch the malware's own search portal page when the user opens a new tab. Chrome users may not even recognize WebDiscover as an unwanted program and think they...

Posted on July 3, 2015 in Browser Hijackers

CoronaVirus Ransomware

CoronaVirus Ransomware screenshot

The CoronaVirus Ransomware (also called CoronaVi2022 Ransomware) is a file-locker, which was released in the wild recently, and it seems that its author has opted to use the name of the Coronavirus (also known as COVID-19), which is a disease that is threatening users worldwide. Just like the disease it is named after, the CoronaVirus Ransomware also threatens users worldwide, but in a different way – it will try to encrypt their files, and also overwrite the contents of their drive's Master Boot Record (MBR). The latter operation may cause a lot of trouble, since the victims' computers will not load their operating system and, instead, they will display a copy of the CoronaVirus...

Posted on March 12, 2020 in Ransomware

Hackers Spreading Malware via Coronavirus Maps Online

Hackers Spreading Malware via Coronavirus Maps Online screenshot

The ongoing outbreak of the coronavirus is now disrupting business across the world, but apparently cybercriminals have no days off, since they're just as active as they were before the beginning of the outbreak. It appears they are now capitalizing on the fears of the people regarding the pandemic. It was back in January that the hackers started using the coronavirus threat as a focus of an email campaign that infected users with malware, and now they are expanding their operations to coronavirus outbreak maps that follow the number of infections and deaths across the world. Many organizations are feeling the pressure from these attacks, such as John Hopkins University who created...

Posted on March 11, 2020 in Computer Security

APT Attack Spreads Malware Using Coronavirus Theme

APT Attack Spreads Malware Using Coronavirus Theme screenshot

The APT (Advanced Persistent Threat) group was spotted sending out spear-phishing emails that allegedly have detailed information about COVID-19, a.k.a. Coronavirus, but instead, they infect the victims with a custom remote access Trojan (RAT). The group is using the coronavirus pandemic to infect unsuspecting victims with a previously unseen malware. The malware is dubbed 'Vicious Panda' by researchers, with the attackers using it in a campaign at the moment. Researchers managed to find two Rich Text Format (RTF) files that were targeting the Mongolian public sector during the outbreak. Once the files are open, a unique and custom-made remote access Trojan is executed. It develops a list...

Posted on March 16, 2020 in Computer Security

Top 5 Popular Cybercrimes: How You Can Easily Prevent Them

Over the course of the past few years, hackers and cybercrooks armed with sophisticated malware have stolen literally hundreds of millions of dollars from online banking accounts and individuals all over the world. We have said it many times before in recent articles, the days of robbing banks in person are gone and now it all takes place behind a screen of a computer connected to the Internet. The Internet can be the most useful tool in business, school or every-day life. At the same time, the Internet can make someone's life a living hell in the event that one becomes the next victim of a cybercrime. A large percentage of the world's population that uses computers over the Internet are aware of cybercrime and the consequences that they may face if they succumb to a cybercriminals' trap. Others who have no clue as to the dangers they...

Posted on October 12, 2010 in Computer Security

$1000 Walmart Gift Card Winner Fake Pop-up

$1000 Walmart Gift Card Winner Fake Pop-up screenshot

Do Not Be Fooled by the '$1000 Walmart Gift Card Winner' Fake Pop-Up The '$1000 Walmart Gift Card Winner' fake pop-up is a pop-up window that is part of a common online scam. Criminals take advantage of inexperienced computer users by displaying misleading advertisements and pop-up windows in an attempt to lead them to attack websites or to convince them to disclose their online account or credit card information. The '$1000 Walmart Gift Card Winner' fake pop-up works by displaying a window with the Walmart logo and colors, claiming that the computer user has won a $1000 USD gift card for Walmart. However, clicking on this window leads the victim to an attack website which will attempt to...

Posted on January 24, 2012 in Fake Error Messages

AntiMalware

AntiMalware screenshot

A typical deceptive campaign is disguising harmful threats as legitimate security programs in order to steal money from inexperienced victims. AntiMalware is a particularly short-named version of this campaign, with clones with names such as Active Security and Total Security. AntiMalware uses an interface that is very similar to the Windows Defender and legitimate Microsoft security programs, to make the victim believe that AntiMalware is a legitimate anti-malware application. Observing AntiMalware's design, you will quickly spot authentic-looking Windows and Microsoft Security Essentials logos as well as a layout that may seem familiar to most users of legitimate Microsoft Security...

Posted on November 9, 2009 in Rogue Anti-Spyware Program

Beware of Fake Walt Disney World Facebook Pages Offering Chances to Win a Free Vacation

Astonishingly, it is nothing new to discover that cybercrooks have setup some fake page using a legitimate and well-known entity to trick computer users into getting something that seems too good to be true. In the latest scheme of things cyerbcrooks have created several fake Walt Disney World pages on Facebook that attempt to offer chances for winning tickets if they share and like some of the posts. Facebook is a playground for cybercriminals and it does not take much effort on a criminal's part to setup a fake page offering enticing deals for computer users, which in reality spread an aggressive scam. One of the current scams involves fake Walt Disney World pages that claim to give you and 50 other people a chance to win an all-paid-for Florida Disney World vacation. The deal does sound rather interesting and could very well be...

Posted on March 20, 2014 in Computer Security

'National Consumer Center' Pop-Ups

'National Consumer Center' Pop-Ups screenshot

The 'National Consumer Center' pop-ups are connected to known online tactics. According to complaints, the 'National Consumer Center' pop-ups may claim that the computer user has won a free iPhone or some other similar costly prize. The 'National Consumer Center' pop-ups may include the legend 'National Consumer Center' in the upper left corner, with an official looking font, and advertisements on the right. These pop-ups are among the most common online tactics and may be used to intrude on the computer user's privacy. The 'National Consumer Center' pop-ups may be caused by adware components installed on the affected Web browser. However, the 'National Consumer Center' pop-ups also may...

Posted on April 28, 2016 in Browser Hijackers

More Articles

EngineOrder

EngineOrder is adware designed to target Mac computers. It is common that adware utilities misrepresent themselves as useful tools that will enhance the user’s browsing quality. This may be the case with the EngineOrder tool, as it may claim to help users get more relevant results to their Web searches. Adware often sneaks into users’ Macs via freeware bundles. If the users try to install an application that comes in a bundle with other software, they might not pay close attention during the installation process. This is how countless users end up installing adware on their systems unknowingly. The EngineOrder adware program may trick users into installing it by mimicking a Flash Player update. If you install the EngineOrder application on your Mac, you will experience an increase in the number of advertisements spawned when you browse...

Posted on April 2, 2020 in Adware

'COVID-19.exe' Wiper

A burgeoning number of cyber crooks are taking advantage of the COVID-19 pandemic by creating malware and various online tactics. It is not surprising that individuals who lack morality are trying to exploit a worldwide crisis of the proportions of the Coronavirus outbreak to make a buck. Many cyber crooks have created Coronavirus-based ransomware threats that encrypt users’ data and blackmail them for cash. Others have used the pandemic to propagate infostealers that are capable of collecting information from the compromised hosts. However, the creators of the ‘COVID-19.exe’ threat have taken a different approach. The ‘COVID-19.exe’ malware is a wiper program that has the potential to cause a lot of harm to the hosts it manages to compromise. The malware experts who spotted the ‘COVID-19.exe’ wiper report that this threat is yet to be...

Posted on April 2, 2020 in Malware

Vollgar

The servers of the MS-SQL (Microsoft SQL) service are once again targeted by cybercriminals. In this new campaign, the attackers are deploying a threat dubbed Vollgar. However, the attack is not very elegant. Instead of looking for potential vulnerabilities in outdated software, the attackers are scanning for any MS-SQL servers that may be accessible via the Internet. If the scanning returns a positive result, the Vollgar threat will attempt to use brute force to get the login credentials needed. Unless the administrator of the targeted server has used a strong password, the attackers may be able to hijack their MS-SQL server via brute force. Once the Vollgar threat manager to compromise the targeted MS-SQL server, it will install a Trojan backdoor on the system. This would enable the attackers to execute remote commands on the...

Posted on April 2, 2020 in Backdoors

Sekhmet Ransomware

Cybersecurity researchers have uncovered a new ransomware threat called the Sekhmet Ransomware. Many cybercriminals opt to distribute ransomware threats like the Sekhmet Ransomware because they are perceived as an easy way to make a buck. Propagation and Encryption The Sekhmet Ransomware may be propagated with the help of spam emails. Authors of ransomware threats often use fake emails to spread their threatening creations. They would send the user an email that contains a bogus attached file, and a fraudulent message that would try to convince the user to open the attachment. What may appear as a harmless document can be a corrupted macro-laced file, so users need to be very careful when they receive an email from an unknown source. Some other commonly used propagation methods include fake application downloads and updates, torrent...

Posted on April 2, 2020 in Ransomware

MultiUpgrade

The MultiUpgrade application may present itself as a tool that will be very helpful to Mac users. However, the MultiUpgrade utility is listed as adware by cybersecurity analysts. It is likely that the MultiUpgrade adware program ends up installed on users’ Macs via a fake application update. It would appear that the MultiUpgrade tool is propagated via a bogus Flash Player update that urges users to download it. However, instead of applying an update to the Flash Player utility, you will end up installing adware on your Mac. The MultiUpgrade tool would make sure to place a large number of advertisements on every website you visit. This means that you will be viewing flashing banners, annoying alerts, various pop-up windows, hyperlinks in text, and other advertisements every time you try to browse the Web. If you have installed adware on...

Posted on April 2, 2020 in Mac Malware

Protection-fix.fun

The Protection-fix.fun page is a dodgy website that takes advantage of a low-level online tactic that has been gaining popularity recently – the iPhone Calendar Events Spam. If you have fallen victim to the Protection-fix.fun con, it is likely that your iCloud email has been leaked online, and the conmen have gotten their hands on it. Con-artists that use the iPhone Calendar Events Spam trick do not need anything else but a functioning iCloud email address to carry out this tactic. As soon as they acquire a user’s iCloud email account, they can start sending them bogus invites to non-existing events via their iPhone’s Calendar application. The fake calendar events affiliated with the Protection-fix.fun website attempt to mislead users into believing that there is malware installed on their mobile device. Another common trick is to...

Posted on April 2, 2020 in Mac Malware

Mybestsecureus.com

The Mybestsecureus.com website hosts a variety of pop-up alerts that try to mislead users into downloading a dodgy VPN service for both iOS devices and Android devices. Users who tend to browse shady websites are more likely to be exposed to the shady pop-ups and alerts spawned by the Mybestsecureus.com page. The alerts in question would claim that the connection of the user is not secure and their privacy is at risk. Of course, then the pop-up would offer a solution to this problem – a VPN application compatible with iOS and Android devices. The VPN application promoted by the Mybestsecureus.com website may not provide you with any useful features. However, it is likely to plant additional advertisements on the websites you visit. This is likely to reduce your browsing quality as the advertisements may overlay important parts of the...

Posted on April 2, 2020 in Mac Malware

Ytoffline.net

Users who seek a page that will allow them to download a YouTube video are likely to come across the Ytoffline.net website. There are genuine websites that offer this service free of charge, but the Ytoffline.net page is not a trustworthy site that will help you in this quest. Users who attempt to download a YouTube video with the help of the Ytoffline.net site may end up being exposed to countless dodgy advertisements and pop-ups. Furthermore, this page is likely promoting shady websites and PUPs (Potentially Unwanted Programs). The Ytoffline.net page is likely marketing empty websites whose goal is to hijack the push-notifications of your Web browser to bombard you with unwanted advertisements. If you have ended up on the Ytoffline.net website, we would advise you to ignore all the advertisements and pop-ups spawned by this shady...

Posted on April 2, 2020 in Browser Hijackers

Bodicidealin.info

The Bodicidealin.info is one of the many websites that utilize a low-level online tactic known as ‘Please Click Allow to Continue.’ The Bodicidealin.info page may claim to host a variety of exciting content to trick users into launching it. However, these claims are false, and the Bodicidealin.info is an empty page that does not contain anything interesting at all. When you open the Bodicidealin.info website, you will be asked to click on the ‘Allow’ button to prove that you are not a robot. This is a fake CAPTCHA test, and following the instructions of the Bodicidealin.info site will not prove that you are not a robot. The visitors of the Bodicidealin.info page are asked to complete this bogus CAPTCHA test to be granted access to the supposedly engaging content of the site. Clicking the ‘Allow’ button will not allow you to access any...

Posted on April 2, 2020 in Browser Hijackers, Mac Malware

FBI Warning Users of Kwampirs Remote-Access-Malware Supply Chain Attack Campaign

FBI Warning Users of Kwampirs Remote-Access-Malware Supply Chain Attack Campaign screenshot

The FBI issued an alert toward healthcare providers and other industries about the ongoing threat of the Kwampir malware on the supply chain. Since as far back as 2016, the FBI was observing an advanced persistent threat that runs a campaign using Kwampirs, a Remote Access Trojan. The information combined with the FBI Liaison Alert System messages (FLASH) is intended to enhance the 'network defense posture public and private partners.' The FBI sent similar alerts regarding Kwampirs in January and February 2020 with the latest reminding of the challenges of the COVID-19 pandemic. The Kwampirs RAT is a modular Trojan capable of gaining access to machines and networks. The primary purpose of...

Posted on April 2, 2020 in Computer Security

Bo9news.biz

The Bo9news.biz page, alongside several other affiliated domains, is using an online tactic known as ‘Please Click Allow to Continue’ to mislead users into permitting them to display Web browser notifications. Other domain names affiliated with the Bo9news.biz site are ‘Bo4news.biz,’ ‘Bo8news.biz,’ ‘Bo6news.biz,’ ‘Bo7news.biz’ and ‘Bo5news.biz.’ The Bo9news.biz website is a shady page that is likely to trick you into visiting it by claiming to provide its users with interesting, up-to-date news. Unfortunately, these are empty promises because the Bo9news.biz site is not hosting any news or other engaging content. As soon as the Bo9news.biz site is launched, the users will be asked to click on the ‘Allow’ button on their screens. The website will claim that unless the visitor complies, they will not be allowed to access the content of...

Posted on April 1, 2020 in Browser Hijackers

Topvideo.online

The Topvideo.online page is one of the countless dodgy websites that partake in the ‘Please Click Allow to Continue’ online tactic. This is a trick often utilized by empty websites that try to hijack the Web browser notifications of their visitors in order to generate cash via advertisements. It would appear that the Topvideo.online website uses a bogus CAPTCHA prompt to trick users into subscribing for the site’s Web browser push-notifications. The dodgy page will claim that unless you prove that you are not a robot (by completing the CAPTCHA), you will not be allowed to access the site’s contents. It is likely that the Topvideo.online page claims to host exciting videos, which would attract the attention of users. However, as we mentioned, the Topvideo.online site is empty, and there are is no media to be viewed. If you click on the...

Posted on April 1, 2020 in Browser Hijackers

Delivesinve.info

There are numerous fake websites online that partake in a scheme known as the ‘Please Click Allow to Continue’ con. Among them is the Delivesinve.info site. This is a website that does not host any interesting or valuable content, so there is no need for you to visit it. To lure in visitors, the Delivesinve.info website is likely to claim to host information or media you may be interested in. However, this is not the case. The goal of this shady page is to hijack your Web browser to flood you with unwanted advertisements. To trick you into allowing it to display Web browser notifications, the website will claim that you will not access its exciting content unless you click on the ‘Allow’ button on your screen. The users who comply with this request will permit the Delivesinve.info site to display Web browser notifications. With the...

Posted on April 1, 2020 in Browser Hijackers

Fiaharam.net

The Fiaharam.net page is an empty website, which has nothing of value to offer you. However, its operators will claim that it hosts exciting content to trick you into launching this empty site. The Fiaharam.net website uses the so-called ‘Please Click Allow to Continue’ low-level online tactic to generate revenue. Users who launch the site will see a prompt being spawned and will be asked to click on the ‘Allow’ button. Often, sites like the Fiaharam.net page would claim that only if you comply with their demands, you will be granted access to the exciting content on their website. Unfortunately, this is not true. If you click on the ‘Allow’ button, you will permit the site to send you push-notifications via your Web browser. This may not sound like something that can create trouble at first, but rest assured that the notifications...

Posted on April 1, 2020 in Browser Hijackers

Shipment Trackers

The Shipment Trackers utility is a Web browser extension, which claims to help provide users with unique tools that will help them track their orders online. However, this is not the case, definitely. The Shipment Trackers Web browser add-on does not offer any unique features. All the tools provided by the Shipment Trackers add-on can be found free of charge online, so there is no reason for users to install any third-party applications to access them. The Shipment Trackers extension would simply link users to the official Web pages of popular delivery companies such as USPS, DHL, UPS, FedEx, etc. However, the goal of this dodgy Web browser extension is to alter your system’s settings and set the ‘Search.hshipmentrackers.com’ as your default new tab page. This website hosts a basic search engine. Users who opt to use the...

Posted on April 1, 2020 in Potentially Unwanted Programs
1 2 3 4 5 6 7 8 9 10 11 1,418