Youndoo creates new Chrome profile

A new Youndoo hijacker from the Elex family copies most of the settings from an existing Chrome user account to create a fake, infected one.

Read more

Explained: WMI hijackers

This post describes how WMI hijackers work and why they are hard to find on an affected system. It also shows an example of such a hijacker called Yeabests after the domain it hijacks to.

Read more

Here’s your unlimited ATM card

A scam about an unlimited and blank ATM card has been doing the rounds for a few months now, probably following the news about the ATM heist in Taiwan that was successful in a way, but didn’t end too well for most of the participants, as they did get caught.

Read more

Hosts file hijacks

The hosts file is the internet variant of a personal phonebook. We discuss a few malware variants that replace or change that phonebook, so you end up calling the wrong sites. The ones they want you to call.

Read more

Surfacing HTA infections

We show two examples of HTA induced infections we have seen recently. Nothing fancy, but feel free to consider it a general warning, that malware authors are expanding the number of file extensions they are using, to spread their payload.

Read more

Select your language