SparkLocker is a ransomware-type virus discovered by our research team during a routine inspection of new submissions to VirusTotal. This malware is designed to encrypt files and demand payment for the decryption. On our test machine, the ransomware encrypted files and appended their names with a
"Beercoin 2 ($BEER2) Airdrop" is a phishing scam. It impersonates the official website of the Beercoin 2 (BEER2) memecoin (beercoin2.wtf) and lures victims into revealing their cryptocurrency wallet log-in credentials with a bogus airdrop. IMPORTANT NOTE: We do not review crypto projects, pl
Our researchers discovered Veluth while inspecting new malware submissions to the VirusTotal website. This malicious program is categorized as ransomware – a type of malware that encrypts files and demands ransoms for their decryption. After we launched a sample of Veluth on our test machine, it
Our researchers discovered warhesageltil[.]com while investigating suspect websites. This rogue page endorses browser notification spam and generates redirects to different (likely unreliable/dangerous) sites. Warhesageltil[.]com and similar webpages are primarily accessed via redirects caused by
Prs-protect[.]pro is a rogue webpage found by our researchers during a routine investigation of suspicious sites. After examining this page, we determined that it promotes browser notification spam and redirects visitors to other (likely untrustworthy/dangerous) websites. Most users access prs-pro
Our research team discovered this fake "Usual Rewards" page while inspecting untrustworthy websites. This scam impersonates the Usual protocol site (usual.money) and lures users into exposing their cryptowallets to a cryptocurrency drainer. Victims of this scam experience financial loss. IMP
While browsing suspicious websites, our research team discovered this fake "Pepe Rewards" page. It imitates the official website of the Pepe coin, which is running a bogus rewards event. This scam is a phishing site that seeks to obtain victims' cryptocurrency wallet log-in credentials. IMPO
"Jupiter (JUP) Rewards" is a phishing scam we discovered during a routine investigative session. It impersonates the Jupiter (jup.ag) platform and lures victims with a fake reward. The goal is to deceive them into disclosing their wallet log-in credentials. IMPORTANT NOTE: We do not review c
We have inspected the page (aiiocations-lombardfinance[.]com) and learned that it is a fraudulent copy of the legitimate Lombard website (lombard.finance). This imitation is crafted to mislead users into believing they can receive a reward. Falling for this scam can result in cryptocurrency theft
Our inspection of the "Changes To Terms Of Service And Privacy Policy" email revealed that it is spam. This message is presented as an alert concerning changes to the email service's terms and policies. The spam mail aims to deceive recipients into disclosing their account log-in credentials to a