The Searchisty extension is yet another rogue extension we detected recently, together with FortyFy and NebulaNanoel. All of the mentioned extensions are created by malware actors to enforce an active managed by organization state on the browser, to...
FortyFy is a type of rogue browser extension that security researchers categorize as a browser hijacker. It is similar to other recently detected rogue apps like PubQuo and the Bing Redirect virus, and another extension that is installed with...
We created this page to address a malware infection with a fake extension called NebulaNanoel. If you are reading this, you are probably bombarded with redirects to sites like Boyu and fake bing searches. There is also another extension that serves...
We ran into a bit of a weird situation in our research. A trojan masquerades as a legitimate program. Such a thing isn’t new – security threats do it all the time, especially trojans, which is what’s happening here. What’s new here is that the...
If you’ve been following the latest cybersecurity news, you might have heard about the recent supply chain attack involving Polyfill.io. I somehow missed this until today, due to, well, researching other malware. But the attack proved...
PubQuo is a type of potentially unwanted software that displays the typical traits of a browser hijacker. It automatically changes the settings of Chrome, Edge, and other Chromium browsers upon installation, and it does this without requesting...
Fake apps have become so common nowadays as browser hijacker components that many people believe they are no threat at all. The current PubSurf infection is one of several rebrands we’ve seen recently – namely JoisApp, TjboApp and...
*Source of claim SH can remove it. We created the information below to guide you in removing the TellYouThePass Ransomware and instruct you on how to avoid repeat infections. Removing it is only half the battle. The other part is closing down the...
This page is dedicated to educating victims on what Warmcookie does and to its removal. A big thank you for the security researchers who made their information public, including Elastic and Esentire. Without the notice they gave everyone, we...
What is CiviApp? CiviApp is a browser hijacker that also exhibits characteristics of a Trojan Horse. It’s kind of an unorthodox thing to say since these things are quite well separated – one infects the browser, the other background...
