Our team has examined rattabless[.]com and concluded that it is designed to trick visitors into allowing it to send notifications. After obtaining this permission, rattabless[.]com can send deceptive notifications (e.g., fake warnings). Interacting with these notifications can lead users to untrus
Prumphortry[.]com is the address of a rogue webpage. Our researchers discovered this page during a routine investigation of suspicious websites. Prumphortry[.]com is designed to promote browser notification spam and redirect users to different (likely unreliable/hazardous) sites. The majority of
After inspecting this "ExxonMobil" email, we determined that it is fake. This spam message is presented as an invitation to form a potential business partnership. It must be emphasized that this email is not associated with the actual Exxon Mobil Corporation. The likely goal of this spam campaign
Our researchers discovered this fake "1inch Reward" site while investigating suspicious websites. This scam claims that users who contributed to the 1inch platform are eligible to receive rewards. Its purpose is to trick victims into exposing their digital wallets to a cryptocurrency wallet. It mu
SparkLocker is a ransomware-type virus discovered by our research team during a routine inspection of new submissions to VirusTotal. This malware is designed to encrypt files and demand payment for the decryption. On our test machine, the ransomware encrypted files and appended their names with a
"Beercoin 2 ($BEER2) Airdrop" is a phishing scam. It impersonates the official website of the Beercoin 2 (BEER2) memecoin (beercoin2.wtf) and lures victims into revealing their cryptocurrency wallet log-in credentials with a bogus airdrop. IMPORTANT NOTE: We do not review crypto projects, pl
Our researchers discovered Veluth while inspecting new malware submissions to the VirusTotal website. This malicious program is categorized as ransomware – a type of malware that encrypts files and demands ransoms for their decryption. After we launched a sample of Veluth on our test machine, it
Our researchers discovered warhesageltil[.]com while investigating suspect websites. This rogue page endorses browser notification spam and generates redirects to different (likely unreliable/dangerous) sites. Warhesageltil[.]com and similar webpages are primarily accessed via redirects caused by
Prs-protect[.]pro is a rogue webpage found by our researchers during a routine investigation of suspicious sites. After examining this page, we determined that it promotes browser notification spam and redirects visitors to other (likely untrustworthy/dangerous) websites. Most users access prs-pro
Our research team discovered this fake "Usual Rewards" page while inspecting untrustworthy websites. This scam impersonates the Usual protocol site (usual.money) and lures users into exposing their cryptowallets to a cryptocurrency drainer. Victims of this scam experience financial loss. IMP