Our researchers found this fake "Ramses Exchange" webpage while investigating suspicious sites. By imitating the official Ramses Exchange website (ramses.exchange), this scam aims to deceive users into exposing their digital wallets to a cryptocurrency drainer. IMPORTANT NOTE: We do not revi
AntiDot is a malware written in Java that targets Android operating systems. The malicious program is multifunctional and provides its own botnet. This sophisticated software can control infected devices remotely and has extensive data-stealing abilities. AntiDot has been offered as MaaS (Malware
We have examined the page (app.destra-claim[.]network) and concluded that it mimics the official DESTRA NETWORK page (destra.network). The fake page entices users with an offer to participate in a giveaway (airdrop). The goal is to trick users into taking actions that can result in cryptocurrency
XDigo is a sophisticated malware attributed to the XDSpy group. Once executed, XDigo operates as a Go-based malware capable of performing various malicious activities. XDigo's capabilities allow cybercriminals to monitor and manipulate the infected systems. If detected on the system, XDigo should
"Account Password Is Old" is a spam email that aims to deceive recipients into disclosing their account log-in credentials to a phishing site. The lure is a fake password expiration notice that threatens the account. This spam message states that the recipient's email account password is o
Scruffy is a Java-based information stealer that can collect a wide range of data. It can steal details about the infected device, information from various applications (including crypto wallets and gaming accounts), and more. If a device is infected with Scruffy, the malware should be removed as
Our inspection of squetofer[.]com has revealed that it is deceptive. It presents a misleading message to trick visitors into granting it permission to show notifications. Moreover, if allowed, squetofer[.]com can bombard users with notifications containing links to untrustworthy websites. Therefor
We have analysed stylenetfusion[.]com and found that it uses deception to promote a legitimate product and wants to show notifications. If permitted, stylenetfusion[.]com may deliver fake warnings and other misleading notifications designed to trick users into opening other shady sites. Overall, s
Our team has examined the website (grass-airdrop[.]sbs) and found that it is a copy of the original Grass website, grass.io. This scam website promotes a fake crypto airdrop (giveaway). The scammers use it to steal cryptocurrency from users. Thus, the fake Grass website should be avoided. IM
Our inspection shows that this is a fake website closely resembling the official Camelot DEX (camelot.exchange) site. The scammers behind this fraudulent scheme aim to trick users into activating a cryptocurrency drainer, allowing them to steal crypto holdings. This and similar scams should be avo