While browsing untrustworthy sites, our research team discovered the spanchainsys[.]com rogue page. It operates by promoting browser notification spam and generating redirects to other (likely dubious/harmful) websites. Spanchainsys[.]com and similar pages are predominantly accessed through redire
Our researchers found this fake "Mitosis" airdrop during a routine inspection of suspect websites. After examining this page, we learned that it impersonates the official Mitosis website (mitosis.org) and functions as a cryptocurrency drainer. Essentially, the scam steals digital assets from expos
Our researchers discovered this fake "Claim $STREAMER" site during a routine investigation. It masquerades as the official website of StreamerCoin (streamercoin.live). Upon examination, we determined that this imitator page operates as a cryptocurrency drainer. IMPORTANT NOTE: We do not revi
Techverificationssecurity.co[.]in is a rogue webpage discovered by our researchers during a routine investigation. This page promotes spam browser notifications and generates redirects to different (likely unreliable/dangerous) sites. Most visitors to techverificationssecurity.co[.]in and similar
Our researchers discovered the adscloudpulse[.]top rogue page while inspecting untrustworthy websites. After investigating this webpage, we learned that it promotes browser notification spam and generates redirects to different (likely unreliable and/or hazardous) sites. Adscloudpulse[.]top and a
"OpenxAI Staking" is a scam that our researchers discovered during a routine inspection of suspicious websites. This fraudulent page promises a large APR (Annual Percentage Rate) for staking tokens. It is disguised as the OpenxAI Network (openxai.org) yet bears no actual association with this plat
Our analysis shows that Hype is ransomware (which we discovered during inspection of malware samples uploaded to VirusTotal) designed to encrypt files and provide a ransom note ("hype Ransmoware.txt"). It also appends an email address, the victim's ID, and the ".hype" extension to files. For exam
We have inspected the website (claims-hyperwavefi[.]xyz) and concluded that it mimics the official Hyperwave site (app.hyperwavefi.xyz) to trick visitors into participating in a fake giveaway. The ultimate goal is to steal cryptocurrency from victims. Therefore, this page should be avoided.
While investigating suspicious websites, our research team discovered this "Lombard ($BARD) Staking" scam. It impersonates the Lombard Finance platform (lombard.finance) and offers point rewards for staking BARD tokens. The fake page operates as a cryptocurrency drainer – by siphoning funds from e
"Your Account Access Needs Reconfirmation" is a phishing email. It claims that the recipient's email must be reconfirmed as part of the routine account maintenance. This spam campaign aims to lure recipients into entering their account log-in credentials to a phishing website. The spam ema