Acreed is an information stealer that has become the third most widespread of its kind, while Lumma now shares the top position with Rhadamanthys. It primarily collects passwords, browser cookies, and autofill data. Acreed also seems to target cryptocurrency wallets, credit cards, and messaging ap
During a routine investigative session, our researchers discovered this fake "Monero" site (monero-wallet[.]io; other domains are possible). It impersonates the official website of the Monero (XMR) cryptocurrency (getmonero.org). Upon examination, we determined that this is a phishing scam targeti
Our inspection of the "Email On Hold" message revealed that it is spam. It informs the recipient that over a dozen messages failed to reach their inbox. With this lure, this phishing campaign aims to trick recipients into disclosing their email account log-in credentials. The spam email wi
Our inspection of securetechworkflow.co[.]in has shown that the site uses clickbait to deceive visitors into permitting it to send notifications to their devices. Once allowed, securetechworkflow.co[.]in can show notifications containing fake warnings and other misleading content. Thus, this page
Our analysis of koilur.co[.]nz shows that it uses clickbait to trick users into agreeing to get its notifications. Once allowed, the site can deliver fake alerts, promotions, and other misleading messages that link to potentially dangerous pages. For these reasons, koilur.co[.]nz should not be tru
We have reviewed the page (claim-aethircloud[.]com) and found that it closely resembles the original Aethir website, aethir.com. Its purpose is to trick visitors into believing that they can receive rewards by connecting their wallets. However, victims of this scam receive no rewards and can suffe
Our team has examined the email and found that it contains a fake receipt confirmation with links to a phishing website. The fraudsters behind this scam email seek to trick recipients into disclosing personal information. Emails of this type should be ignored to avoid account hijacking, monetary l
We reviewed aave-governance[.]net and determined it to be a scam site impersonating the genuine Aave platform (aave.com). The fraudulent site copies the design to look legitimate and is created to deceive users into connecting their wallets. Its purpose is to steal cryptocurrency through a malicio
After examining this "Insufficient Storage Space" email, we determined that it is spam. This scam message aims to lure recipients into revealing their account log-in credentials to a phishing website by claiming that multiple emails failed to reach the inbox. This spam email states that an
Our researchers found this fake "Quant ($QNT) Rewards" page during a routine investigation. It promises rewards to QNT token holders. The purpose of this scam is to deceive users into exposing their cryptowallets to a cryptocurrency drainer. IMPORTANT NOTE: We do not review crypto projects,