We have inspected the site (rewarding-chainlink[.]com) and found that it is a fake website mimicking the official Chainlink (chain.link) page. Scammers use this fraudulent page to lure visitors into taking steps that can lead to significant financial losses. It is important to be careful when inte
Our researchers discovered Lyrix ransomware while reviewing new submissions to the VirusTotal website. Malware within this classification is designed to encrypt data and demand payment for its decryption. On our test machine, Lyrix encrypted files and added an extension comprising ten random char
Our team has examined the email and concluded that it is a scam (a phishing attempt). The email is disguised as a notification regarding the SumUp account suspension. SumUp is a legitimate financial technology company that has nothing to do with this fraudulent email. Recipients should ignore this
We have inspected the email and found that it is a scam email. It masquerades as a credit notice to trick recipients into opening a fake web page and disclosing personal information. These types of scams are known as phishing attempts. Recipients should ignore such emails to avoid potential issues
During our inspection of malware samples uploaded to VirusTotal, we encountered Pres, a new ransomware from the Dharma family. This ransomware encrypts files and appends the victim's ID, contact email address, and ".pres" extension to filenames. Pres also displays a ransom note in a pop-up window
Our researchers found the mospross.co.in rogue page while inspecting questionable websites. Upon examination, we determined that this webpage promotes browser notification spam and redirects users to other (likely unreliable/hazardous) sites. Most visitors to mospross.co[.]in and similar pages ent
While browsing dubious websites, our researchers discovered the bachlobeekeled[.]com rogue webpage. It operates by promoting browser notifications spam and redirecting users to other (likely unreliable/harmful) sites. Bachlobeekeled[.]com and analogous pages are primarily accessed through redirect
Mesofirewall.co[.]in is a rogue webpage discovered by our research team during a routine investigation of suspicious sites. After examining this page, we learned that it promotes browser notification spam and redirects users to different (likely dubious/malicious) websites. Webpages like mesofirew
"Cuponomia - Cupom e Cashback" is an unwanted browser extension promoted as a money-saving tool for Brazilian users. To expand upon its advertised capabilities, the software can notify users of available coupons or cashback offers for e-commerce platforms. However, this extension spies on users' b
Our researchers discovered this fake "Haedal Airdrop" while investigating untrustworthy websites. It masquerades as the Haedal platform (haedal.xyz). Victims are lured by this scam into exposing their cryptowallets to a cryptocurrency drainer with the promise of an airdrop. IMPORTANT NOTE: W