Zen ransomware is file-encrypting malware that comes from the Dharma ransomware family. It’s a type of malware that encrypts files and makes them unopenable. The ransomware is identifiable by the .[zen_crypt@tuta.io].zen extension that gets added to encrypted files. Unless you put them through a decryptor, you will not be able to open files that have that extension. Unfortunately, acquiring the…
mescnetwork.pro is a deceptive website whose sole purpose is to trick users into allowing desktop ads. When you get redirected to the site, you will immediately get a browser alert saying “mescnetwork.pro wants to show notifications”. The site is misusing a legitimate browser feature, so if you click “Allow”, you will authorize the site to show ads on your desktop.…
The “Flare Airdrop” crypto scam refers to a scam that imitates the legitimate Flare platform to trick users into connecting their digital wallets to a malicious site. The main goal of these types of scams is to get users to initiate crypto drainers that would steal all the funds in the digital wallets. Flare is a legitimate base-layer blockchain that allows…
Midnight ransomware is a file-encrypting malicious program that takes files hostage by encrypting them. The malware uses military-grade encryption to encrypt files, making them unopenable. When files are encrypted, an extension is added to them, which is .midnight in this case. This allows users to identify both which files have been encrypted and what ransomware specifically they are dealing with.…
kurepos.co.in is a deceptive site with no content on it. Its sole purpose is to trick users into allowing desktop ads. To do this, it misuses a legitimate browser feature that allows sites to request permission from users to show notifications. These notifications show up on the desktop and work as a way for users to keep up with the…
The “Hinkal” crypto scam refers to scams that imitate Hinkal, a legitimate crypto platform. Malicious actors have created an imitation site app-hinkal.cyou, that asks users to connect to their digital wallets. The legitimate Hinkal website is hinkal.pro. If users connect their digital wallets on the scam site, they will initiate a crypto drainer that will make unauthorized transfers and eventually drain…
flowworksfivesphere.com is a deceptive website that tries to trick users into agreeing to see desktop ads. The site is disguised as a download site, but its sole purpose is to trick users into allowing ads. It misuses a legitimate browser feature that allows sites to show notifications on users’ desktops if they are given permission. While legitimate sites may show…
Datarip ransomware is file-encrypting malware from the MedusaLocker family. This type of malware takes files hostage by encrypting them and demands payment for their recovery. Files encrypted by Datarip ransomware can be identified by the .datarip extension added to encrypted files. Unfortunately, files having that extension indicates that they have been encrypted and cannot be opened. Such files need to be…