Qual ransomware is file-encrypting malware from the Djvu/STOP ransomware family. The .qual extension added to encrypted file names can identify the ransomware. Unfortunately, the ransomware will encrypt all personal files and request a payment to recover them. At the moment, only users who have backups can recover files for free.
…
“Online Internet Banking Security Center” pop-up is classified as a tech support scam. This type of scam falsely informs users that their computers have been infected with malware. Users are prompted to call the provided phone number to get assistance with removing the malware. Users who call are connected to scammers pretending to work for legitimate companies like Microsoft or…
“You Are One Of A Kind” email is classified as a sextortion scam email. The email falsely claims that a video of the recipient watching pornography will be sent to all their contacts if they do not agree to pay $1280. The email is nothing more than a scam and can be ignored.
…
“Redundancies Across The Organization” email is part of a new malicious email campaign that distributes the Agent Tesla RAT (Remote Access Trojan). The email falsely informs the recipient that their employment has been terminated. The email contains a malicious attachment, which users are prompted to open by the sender. If users open it, their computers become infected with a dangerous…
“New app(s) have access to your Microsoft Account” email is part of a phishing campaign that tries to trick users into disclosing their Microsoft account login credentials. The email itself is harmless if users do not click on the link and disclose their login credentials. However, if credentials are successfully phished, users’ accounts will be hijacked by malicious actors.
…
The “UNITED NATIONS COMPENSATION (COVID19 ASSISTED PROGRAM)” email is part of a scam email campaign that claims the recipients are eligible for compensation. The email promises users a golden box, supposedly worth $5.5 million. This and similar emails aim to phish users’ personal information. If users engage with this scam email, they could end up revealing highly sensitive information.
…
“Internet Is A Dangerous Place” email falls into the sextortion email scam category. The reason the email is classified as a sextortion scam is because it uses a non-existent explicit video to threaten users into paying money. It’s a very common type of scam email that can be ignored because it’s harmless as long as users don’t interact with it.
…
Watz ransomware is file-encrypting malware. If you suddenly cannot open your personal files and file names have .watz added to them, your files have been encrypted. Encrypted files will not be openable until you first use a decryptor on them. At the moment, only users who have backups can recover files for free.
…
“Saved Passwords Were Found Online” email is a phishing attempt that tries to trick users into revealing their login credentials. The email claims that users’ passwords have been exposed and must be changed to protect accounts. If users engage with the email and follow the instructions, they will reveal highly sensitive information to cybercriminals.
…
Waqa ransomware is file-encrypting malware that takes personal files hostage. The ransomware is part of the Djvu/STOP malware family. The malicious actors operating this malware family release new versions regularly, with hundreds of versions already in the wild. Waqa ransomware can be identified by the .waqa file extension added to encrypted file names. Unfortunately, only users with backups can recover files…