An industry analyst report by Forcepoint and Ponemon Institute, titled “The 2016 Study on the Insecurity of Privileged Users” has come to some troubling revelations. The study is based on results of a recent survey of some 704 IT operations…
File extensions .better_call_saul;.breaking bad;.heisenberg;.xtbl;.ytbl are just some of the expansions associated with the nasty Shade ransomware virus. There have been many variants ever since one of the first CrySiS variant has appeared, and many have the reason to believe that…
Ransomware virus belonging to the Troldesh ransomware viruses called VeraCrypt@india.com virus has been detected by ESG malware researchers to cause infections and run on system startup. Being part of the XTBL ransomware variants the Veracrypt@india.com virus is created to generate…
Open-source ransomware is a real issue which is continuously evolving. Over the past few weeks, researchers have caught three open-source crypto virus strains, based on Hidden Tear and EDA2. What all of the three strains have in common is that…
A variant of the Troldesh/Shade ransomware virus family has been spotted recently. The virus has been dubbed Drugvokrug727 because it uses the Drugvokrug727@india.com email address. The wallpaper placed on a compromised computer features a digital sketch of the main character…
Another variant of the many Troldesh ransomware variants leaving the e-mail Grand_car@aol.com has been detected in the wild. The ransomware virus is reported to use an advanced AES encryption algorith with 128-bit strength, the decryption for which is reported to…
September is expected to be a month riddled with malware. We have already seen several banking Trojans, some new and some renewed, and a strong wave of CrySiS/ Troldesh ransomware variants. However, this is far from everything happening on the…
Ransomware virus associated with the e-mail address Meldonii@india.com has been spotted out in the wild. Researchers have identified this virus to have associations with the XTBL and CrySiS ransomware variants. This automatically points out that Meldonii@india.com Ransomware may use AES…
Malware researchers have identified a string associated with the XTBL viruses, dubbing it Sitaram108@india.com ransomware virus. It uses the .xtbl file extension and similar to other XTBL viruses may use the AES and RSA ciphers to encrypt files of affected…
Have you ever thought that a botnet of Android devices could be controlled via Twitter? This is no longer a theory because it has already happened, as disclosed by researchers at ESET. The botnet, dubbed Android/Twitoor or just Twitoor is…
A ransomware threat that is a part of the many .XTBL variants has appeared, and it has begun infecting users worldwide. It uses a strong encryption algorithm to encipher the files of its victims on system startup. The aim of…
Yet another ransomware virus has appeared, belonging to the notorious .XTBL ransomware variants. The malware has been the reason for report that it aims to encrypt the files of affected users. It may use AES encryption to encode the files…
Wzscnet.com is a search engine and the main domain of a browser hijacker that redirects. The hijacker has got a logo on its main search page, resembling that of Google, as each of the letters is colored in a similar…
DealRecovery.com is the main website for software that presents itself as useful. The software is promoted as a one-click backup service and upon installing it, your browsers will be hijacked. The hijacker will switch the search engine, new tab setting…
GozNym, the banking Trojan that was detected in April 2016, has been just caught once again in a new active campaign. This time victims of the banker are German users. Researchers at IBM X-Force say that the Trojan has been…
WildFire Locker is a ransomware virus that aims to encrypt the files of the computers it infects adding the .wflx file extension and asking users to pay a ransom of 299 USD to restore the encrypted files. When the virus…
Ransomware has moved from targeting hospitals to targeting universities. According to SentinelOne, six out of ten British universities have fallen victim to crypto virus attacks. The security firm has sent a FOI (Freedom of Information) request to 71 higher educational…
TopSecurityTabSearch.com is the primary web address of a browser hijacker. Imali Media Ltd. is the company creator of that unwanted program. An extension related to the hijacker, with similar capabilities, exists. Every search query you make will be filtered by…
A base transceiver station (BTS) is a piece of equipment that aids wireless communication between user equipment (mobile phones, WLL phones, computers with wireless connectivity) and a network, such as wireless communication technologies like GSM, CDMA, wireless local loop, Wi-Fi,…
Part of the Purge ransomware variants the Globe virus has begun infecting PCs and encrypting their files after which appending the .purge extension to the encoded files. The aes-256 encryption algorithm may be used by the Globe malware to scramble…
