Utjg ransomware is a file-encrypting malware that adds .utjg to encrypted files. This ransomware comes from the notorious Djvu/STOP ransomware family and is the most recent version released by this gang. Ransomware versions from this family are considered to be quite dangerous because there is no free decryptor to decrypt encrypted files. The malware operators will offer you a decryptor…
Futm ransomware is file-encrypting malware from the Djvu/STOP family. The malware encrypts files and then demands money for their decryption. The Djvu malwa family is responsible for releasing hundreds of these ransomware infections, with a new one appearing every few days. Futm ransomware is the most recent one. Unfortunately, it’s currently not possible to decrypt files for free, and getting the…
Oranopportunitytos.xyz is a very generic scam website, completely identical to sites like Cafvdemyunderthf.xyz, Eagreatassetto.xyz, and Everalyearsfou.xyz. Sites like this misuse a legitimate browser feature to trick users into allowing ads on the desktop. When you get redirected to the site, you will be shown a browser alert saying “Oranopportunitytos.xyz wants to show push notifications”. However, instead of useful content, the…
Cafvdemyunderthf.xyz is a generic scam website that misuses a legitimate browser feature to scam users. When you visit the site, you will get a browser alert saying “Cafvdemyunderthf.xyz wants to show notifications”, and clicking “Agree” would allow the site to spam your desktop with ads. The site has no content and merely exists to expose users to ads.
…
Qmak ransomware is a generic file-encrypting malware that was released by the same cybercrime gang behind ransomware like Irfk and Palq. They all come from the same Djvu/STOP ransomware family and are very similar. You can identify which Djvu ransomware you’re dealing with by the extension that gets added to encrypted files. In this case, .qmak will be added to…
Eagreatassetto.xyz is a very generic scam website that pushes a social engineering scam to trick users into allowing advertisements on the desktop. It misuses a legitimate browser feature that allows sites with permission to show users push notifications on the desktop. This is why you will see a browser alert saying “Eagreatassetto.xyz wants to show notifications” as soon as you…
Qdla ransomware is a generic file-encrypting malware from the Djvu/STOP ransomware family. The group operating this ransomware has released hundreds of ransomware, all of which add their own extensions to encrypted files. This particular ransomware adds .qdla, which is why it’s known as Qdla ransomware. Once files are encrypted, you will not be able to open them unless you first use…
A coordinated law enforcement operation has led to the arrest of 7 hackers allegedly affiliated with the REvil group (also known as Sodinokibi), one of the most prolific cyber gangs in history. REvil, the successor of another notorious group GandCrab, is responsible for some of the biggest attacks on businesses and organizations in recent years, including the massive cyberattack on software…