Ransomwared Ransomware

Ransomwared Ransomware screenshot

Malware researchers have detected a new data-locking Trojan named Ransomwared Ransomware. This threat also is known as ‘iwanttits Ransomware.’ Thankfully, cybersecurity experts have managed to crack the Ransomwared Ransomware, and there is a free decryption tool available online. Propagation and Encryption It is not fully clear what propagation methods are the attackers employing. It is likely that the Ransomwared Ransomware is spread via spam emails that contain infected attachments. However, there are other popular infection vectors that may be utilized in the spreading of the Ransomwared Ransomware – bogus software updates, torrent trackers, malvertising operations, etc. The...

Posted on February 13, 2020 in Ransomware

Loda RAT

The Loda RAT is a RAT (Remote Access Trojan) that has been operating for three years as malware analysts first spotted it back in 2017. The Loda RAT is a rather simple RAT, but that does not mean that it cannot get the job done. This Trojan is written in the AutoIT programming language, which is rather unusual. Once the Loda RAT compromises a system, it is able to perform a rather long list of tasks. The Loda RAT appears to be targeting users in the United States, Central America, and South America, mainly. The creators of the Loda RAT are propagating it via bogus emails that direct users to a link that would launch a fake page that belongs to the attackers. This page hosts various macro-laced documents that are designed to target a known vulnerability – CVE-2017-11882. Upon infecting the targeted computer, the Loda RAT would establish...

Posted on February 13, 2020 in Remote Administration Tools

Safeplex Search

There are innumerous browser extensions that are not what they market themselves to be. Among them is the Safeplex Search Web browser add-on. This browser extension claims to enhance the search results a user gets, but this is not the case certainly. The Safeplex Search add-on is designed to tamper with the users’ Web browser configuration without their knowledge. Once the users install the Safeplex Search add-on, this extension would change their Web browser settings and redirect users to a page that is affiliated with the authors of the extension. This is done to generate traffic for the page in question. Whenever the users attempt to execute a search, they will be directed to the Yahoo Search engine. This cannot be considered an unsafe activity, and you do not need to be concerned about the safety of your computer or your...

Posted on February 13, 2020 in Potentially Unwanted Programs

Easy Mac Care

The Easy Mac Care is an application targeting Mac users. The creators of the Easy Mac Care tool claim that this application would improve the work of the system by erasing unnecessary files and changing some settings. The Easy Mac Care tool may be capable of deleting files and applying some changes, but it is improbable that you will notice much of a difference in the performance of your system. However, the Easy Mac Care application will not apply any fixes to your system unless you pay for the full version of it. The Easy Mac Care tool is considered to be a PUP (Potentially Unwanted Program) by malware researchers. This is due to the fact that this application has been reported to present users with exaggerated reports. Minor problems are likely to be presented as critical issues. This is a social engineering trick used to intimidate...

Posted on February 13, 2020 in Mac Malware, Potentially Unwanted Programs

Safariosso-aplosso.com

The Safariosso-aplosso.com website is yet another fake page that attempts to exploit its visitors. It would appear that this site targets Apple users mainly. Users who visit the Safariosso-aplosso.com site may be presented with pop-up windows and alerts stating that their systems have been compromised. Visitors also may be told that their connection is not secure. These are social engineering tricks designed to intimidate and pressure users. After being presented with various fraudulent reports regarding their system’s health and safety, the visitors of the Safariosso-aplosso.com website will be offered to download a fake anti-malware tool that will supposedly take care of all their device’s issues. For users who were given a bogus report regarding the security of their connections, the Safariosso-aplosso.com site offers a fake VPN...

Posted on February 13, 2020 in Browser Hijackers

Getstream.club

Users who are looking for streaming websites hosting pirated content are likely to come across the Getstreams.club page. This is a bogus website that claims to host content that may be of interest to the user. Once the users open the Getstreams.club site, they will be greeted with a fake video player prompt. The visitors will be asked to click on the ‘Allow’ button if they want to view the video in question. However, the Getstreams.club site is not hosting any valuable content, and there is no video to be viewed. Clicking on the ‘Allow’ button would enable the Getstreams.club site to send you Web browser push-notifications. The Getstreams.club site will use this permission to bombard you with unwanted advertisements via your Web browser notifications. Avoid engaging with the advertisements affiliated with the Getstreams.club website,...

Posted on February 13, 2020 in Browser Hijackers

Wallationety.pro

Users who tend to browse dodgy, untrustworthy sites are likely to stumble upon the Wallationety.pro page. This is a fake page that has only one goal – to hijack its visitors’ Web browser notifications. While legitimate websites use Web browser-push notifications to provide their users with useful information, pages like the Wallationety.pro site will abuse the browser notifications to deliver unwanted advertisements. Upon launching the Wallationety.pro site, users will be asked to click on the ‘Allow’ button displayed on their screens. Doing so would permit the Wallationety.pro page to display Web browser notifications. As soon as the site acquires this permission, it will begin flooding the user with irrelevant advertisements. Experts warn users against clicking on advertisements related to the Wallationety.pro site, as it is likely...

Posted on February 13, 2020 in Browser Hijackers

Officultpolicit.pro

If you like to browse untrustworthy websites, you may come across the shady Officultpolicit.pro page. This website would attempt to hijack your Web browser notifications to flood you with unwanted and often irrelevant advertisements. Upon visiting the Officultpolicit.pro site, users will be required to prove that they are not robots by clicking on the ‘Allow’ button on their screens. Needless to say, this is a fake CAPTCHA, and clicking the button does not serve to prove that you are not a robot. Instead, by clicking on the ‘Allow’ button, you will permit the Officultpolicit.pro site to send you push-notifications via your Web browser. This will become very tiresome quickly because the Officultpolicit.pro abuses the permission by bombarding its visitors with countless advertisements. To make matters worse, the Officultpolicit.pro...

Posted on February 13, 2020 in Browser Hijackers

Deliverblackjohn.com

The Deliverblackjohn.com site is not to be trusted. This is a bogus Web page that will attempt to hijack your Web browser notifications. The operators of this shady site generate cash by spamming their visitors with unwanted advertisements. We assure you that there is no need to visit this dodgy page as it hosts no valuable content. When the users visit the Deliverblackjohn.com page, they will be asked to complete a fake CAPTCHA that is meant to prove that they are not machines. To prove that, the user will be asked to click on the ‘Allow’ button displayed on the page. However, doing so will provide the Deliverblackjohn.com page with permission to display Web browser notifications. Then, the Deliverblackjohn.com website will begin spamming the user with unwanted advertisements. It is likely that this dubious page works in cooperation...

Posted on February 13, 2020 in Browser Hijackers

KBOT

The KBOT threat is a piece of malware that was first spotted back in 2012. Ever since malware analysts uncovered this threat, they have been keeping a close eye on it. Among the most interesting features of the KBOT threat is that it is capable of acting like a worm. This means that the KBOT malware may propagate itself to additional systems silently. Once the KBOT compromises a PC, it will try to plant its corrupted payload in all removable drives that may be plugged in, all the executable files hosted on the user’s hard drive and shared network folders. This enables the threat to sneak into other systems without the users ever noticing that anything wrong may be going on silently. The creators of the KBOT threat have added additional features to this threat that help it remain undetected by the user or any security tool they may have...

Posted on February 12, 2020 in Malware

Achievertable.club

The Achievertable.club website is a fake page that is likely to be encountered by users who are used to browse low-quality sites. The creators of the Achievertable.club site make cash by bombarding their visitors with countless advertisements. The Achievertable.club website would present visitors with pop-up windows and alerts that may be very difficult to close as the ‘X’ button may be hidden or change its location to mislead the user. Some of the ‘X’ buttons may not even serve to close the ad in question, but may, instead, spawn a new advertisement. Users are advised against engaging with the advertisements affiliated with the Achievertable.club site. Dodgy pages like the Achievertable.club website usually promote fake services and low-quality products because they tend to work with shady advertisement networks. If you do not tend to...

Posted on February 12, 2020 in Browser Hijackers

BenefitSites

The BenefitSites application is a dodgy program designed to target Mac users. This shady application claims to provide its users with hours of entertainment by offering various engaging content. Unfortunately, this is far from the truth. Malware researchers have classified the BenefitSites application as adware. The BenefitSites applicatio’s only goal is to generate cash for its creators by redirecting users to affiliated websites that are hosting countless advertisements. To make matters worse, the advertisements linked to the BenefitSites application may be promoting untrustworthy content such as PUPs (Potentially Unwanted Programs), more adware, a variety of tactics or even malware. This is why users should avoid clicking on any advertisements affiliated with the BenefitSites application. The BenefitSites application itself is not...

Posted on February 12, 2020 in Adware

SystemNotes

The SystemNotes extension is designed to target Mac users as it is compatible with the Safari Web browser. This Web browser extension is meant to provide users with various tools that are meant to boost their productivity. The SystemNotes Web browser add-on claims to offer notifications, reminders, and note-keeping modules that will help users manage their tasks better. However, the publishers of this application do not mention that the SystemNotes add-o also will alter users’ Web browser settings without their knowledge. Needless to say, no reputable Web browser extension would attempt to meddle in your system’s configurations without asking for your permission first. The SystemNotes extension will alter the default homepage and new tab page of the user. It would appear that the SystemNotes add-on would set affiliated third-party...

Posted on February 12, 2020 in Potentially Unwanted Programs

Deducationeder.pro

The Deducationeder.pro Web page is a shady site that aims at misleading its visitors. This dodgy website claims to host engaging content that is meant to attract the user’s attention. However, there is a catch. The users need to confirm that they are not to access the content the Deducationeder.pro site supposedly hosts. Unfortunately, there is no valuable or engaging content on the Deducationeder.pro website. Also, users who follow the instructions provided by the page will enable it to display Web browser notifications because the CAPTCHA prompt they were presented with is fake. Users who have fallen for the trickery of the developers of the Deducationeder.pro site claim to be receiving a constant advertisement flooding. The Deducationeder.pro page utilizes the user’s Web browser notifications to spam them with unwanted and often...

Posted on February 12, 2020 in Browser Hijackers

Talktofranky.com

The Talktofranky.com site may appear to host interesting content to attract the attention of users online. However, this is not the case certainly, as there is no content of value hosted on the Talktofranky.com website. The operators of the Talktofranky.com site have had only one goal in mind when creating this page – to hijack the Web browser notifications of their visitors. This behavior is a red flag because legitimate websites would not attempt to trick their users into permitting them to display browser push-notifications. The Talktofranky.com website would present its users with a fake CAPTCHA prompt that is meant to prove that the s are not robots. However, if the visitors follow the instructions, they will permit the shady Talktofranky.com site to display Web browser push-notifications that may turn into an irritating nuisance...

Posted on February 12, 2020 in Browser Hijackers