Malware

Remove “Server (IMAP) Session Authentication” email scam

The “Server (IMAP) Session Authentication” email falls into the phishing scam category. The email claims that irregular activity in your account has been detected, which triggered a precautionary measure, and access to your email account has been restricted. Supposedly, you will not be able to send any emails because of this. The email warns that you have to confirm authentication…

Remove VerdaCrypt ransomware virus

VerdaCrypt ransomware virus is a malicious infection that encrypts files. It’s a type of malware that essentially takes users’ files hostage by encrypting them and demands payment for their decryption. The ransomware can be identified by the .verdant extension added to encrypted files. Unfortunately, you will not be able to open files with this extension unless you first put the…

Remove PayForRepair ransomware

PayForRepair ransomware is file-encrypting malware. It belongs to the Dharma ransomware family. It’s a very dangerous type of infection because it targets personal files and takes them hostage by encrypting them. Encrypted files cannot be opened unless they’re first put through a special decryptor. However, acquiring the decryptor is not easy as only the malicious actors behind this ransomware have…

Remove “Reconfirm Account Ownership” email

The “Reconfirm Account Ownership” email falls into the phishing category. It’s a malicious type of email that tries to steal your email account login credentials. It falsely informs users about a supposed update to the domain and the necessity to reconfirm your account ownership. If you interact with the email and click on the provided button, you will be taken to…

Remove “We Hacked Your System” sextortion email

The “We Hacked Your System” email falls into the sextortion scam category. The email claims that the recipient’s computer was infected with a virus when they visited a pornography website. The supposed malware gave its operators full access to the infected computer, which allowed them to spy on the recipient. The malicious actors behind this email claim to have made a…

Remove DarkMystic (BlackBit) ransomware

DarkMystic (BlackBit) ransomware is file-encrypting malware from the BlackBit malware family. It’s a very dangerous infection that takes files hostage by encrypting them and demands payment for their recovery. The ransomware can be identified by the .darkmystic extension it adds to encrypted files. You will not be able to open these files unless you first use a decryptor program on them.…

Remove “Standard Bank – VAT Increase” email

The “Standard Bank – VAT Increase” email is part of a phishing campaign that aims to steal users’ online bank login credentials. It’s a fairly generic phishing campaign that should be immediately recognizable by many users. The email claims that South Africa’s finance minister has announced that VAT rates will increase from 15% to 15.5% from 1 May 2025. The email…

Remove Craxsrat ransomware

Craxsrat ransomware is malware that encrypts files. It’s a very serious malware infection that essentially takes personal files hostage. It targets all important files (e.g. photos, documents, etc.) and demands users pay for a decryptor to get them back. The ransomware can be identified by the .craxsrat extension added to encrypted files. Dealing with ransomware is tricky as even paying the…

Remove “IMAP/POP3 Mail Delivery Incomplete” email

The “IMAP/POP3 Mail Delivery Incomplete” email is a phishing attempt that tries to trick you into revealing your email login credentials. The email claims that 5 emails have been undelivered to your inbox because of server issues. The email offers you two choices, to delete or receive the 5 undelivered emails. Whatever you click on, you will be redirected to…

Remove euchakedne.com pop-up ads

euchakedne.com is a scam website that tries to trick users into allowing desktop ads. When you get redirected to the site, you will immediately get a browser alert saying “euchakedne.com wants to show notifications”. The site is using a legitimate feature, which is why you’ll start getting ads on your desktop if you click “Allow”. Not only will these ads…