Australian Federal Police ransomware is a screen-locker type of ransomware. This particular version targets users in Australia but screen-locker infections show localized screens based on users’ locations. The ransomware locks the screen and displays an image saying users’ computers have been blocked because they’ve violated several laws. To avoid being charged with things like watching/distributing illegal pornography (child abuse, zoophilia),…
bigdatacorps.xyz is a deceptive website that displays a fake virus alert to trick users into either downloading questionable programs or calling fake tech support numbers. The site also prompts the browser to display an alert saying “bigdatacorps.xyz wants to show notifications”, and if you click “Allow”, the site will be permitted to spam ads on your desktop. Those ads may…
Scp ransomware is file-encrypting malware from the Makop ransomware family. The ransomware encrypts target files and demands a payment for their recovery. The malware can be identified by the .[unique ID].[studiocp25@hotmail.com].scp extension added to encrypted files. In addition to encrypting files, the ransomware also claims to have stolen the files and threatens to release them if a payment is not…
The “Server Has Been Updated – Refresh Your Email” email falls into the phishing category as it aims to steal users’ email login credentials. The email is a fairly basic phishing attempt and is not difficult to identify. It claims that the recipient’s email service provider’s server has been updated and supposedly users need to refresh their email to get…
The “Elon Musk – Donation From Change” email falls into the scam email category. The email claims that the recipient is eligible to receive $1 million from Elon Musk, as part of his ongoing commitment to giving away money after Donald Trump’s victory in the US Presidential Election. The email aims to steal users personal information by tricking users into engaging…
The “Google Foundation – E-mail Electronic Online Sweepstakes” email falls into the scam email category. The email claims that the recipient has been randomly selected as a winner of Google Foundation’s online lottery. The recipient can supposedly receive a donation, and all they need to do is contact the person mentioned in the email. The email can be classified as a…
The “Your Email Certificate Has Expired” email falls into the phishing email category. It’s part of a phishing campaign that aims to trick users into revealing their email account login credentials. The email claims that the recipient’s email certificate has expired and needs to be renewed if they want to get the messages that have supposedly not been delivered because…
Weaxor ransomware is file-encrypting malware that takes files hostage and demands payment for their recovery. The ransomware adds the .rox extension to encrypted files. The ransomware targets all personal files. Unfortunately, only users with backups can recover files for free at the moment. The ransomware operators will offer a decryptor but paying for it is not recommended for several reasons.
…
Nyxe ransomware is malware that targets personal files and encrypts them. The ransomware does not appear to be fully functional so it’s likely still in development. Nonetheless, users can infect their computers with it, and if no backup is available, they will permanently lose access to their files. Users who have backups can recover files as soon as they remove Nyxe…
The “I have e-mailed you from your account” email falls into the sextortion scam email category. The email falsely claims that the recipient’s computers have been infected with malware that allowed the sender to film the recipient watching pornography. They threaten to send the video to all of the recipient’s contacts unless they agree to pay $250 in Bitcoin. The…