Cybersecurity news headlines for April 2022

In April’s edition of cybersecurity news headlines, we discuss 4 major stories. First off, German law enforcement has taken down the world’s largest darknet marketplace Hydra after getting a tip its infrastructure may be hosted in Germany. We also discuss the Russian hacker group Sandworm attempting to target Ukraine’s critical infrastructure, and T-Mobile disclosing that hacker group Lapsus$ was able to…

Stop Oulnhdlukik.xyz redirects

Oulnhdlukik.xyz is a generic website whose sole purpose is to push a scam and trick users into allowing ads on the desktop. As soon as you enter the site, you will get a browser alert saying “Oulnhdlukik.xyz wants to show notifications”. While legitimate sites would show useful notifications, sites like Oulnhdlukik.xyz merely spam users with ads. There is no reason to…

Jhgn ransomware removal

Jhgn ransomware is a file-encrypting malware, released by the cybercriminals operating the notorious Djvu/STOP ransomware family. These cybercriminals release new ransomware versions regularly, usually at least two a week. They are all more or less identical to one another but can be identified by the extensions they add to encrypted files. This ransomware adds .jhgn, which is why it’s known…

How to delete Msjd ransomware

Msjd ransomware or .msjd virus is a file-encrypting malware that essentially takes files hostage. The malware comes from the notorious Djvu/STOP ransomware family. The cybercriminals operating this ransomware family release new ransomware on a regular basis, with new versions coming out every couple of days. Msjd ransomware is one of the more recent versions and it adds .msjd to files it…

Remove Jhdd ransomware

Jhdd ransomware is a generic ransomware infection, released by the cybercriminals operating the Djvu/STOP ransomware family. .jhdd virus is essentially another version of Djvu/STOP. The cybercrime group releases these new versions on a regular basis, with Jhdd ransomware being one of the more recent versions. While this ransomware is very generic, it’s also very dangerous. Once inside a computer, the ransomware…

Stop Rplnd32.com redirects

Rplnd32.com is a scam website that misuses a legitimate browser feature to spam users’ desktops with ads. When you get redirected to the site, you will get a browser alert saying “Rplnd32.com wants to show notifications”. Allowing a site to show notifications means the site will be able to show push notifications on the desktop. But if you allow Rplnd32.com and…

How to stop Jooblyball.com redirects

Jooblyball.com is a generic scam website that aims to trick users into allowing ads on the desktop. The site misuses a legitimate browser feature that allows websites with permission to show push notifications. When you get redirected to the site, you will immediately get a browser alert saying “Jooblyball.com wants to show notifications”. Those notifications appear on the desktop. But…

How to remove Qpss ransomware

Qpss ransomware is a generic file-encrypting malware from the Dvju/STOP ransomware family. The people operating this malware family are notorious for releasing new ransomware versions on a regular basis. The versions are more or less identical to one another but can be differentiated by the extensions they add to encrypted files. Qpss ransomware is known as such because it adds .qpss…