After reviewing this "Renew Your Webmail Access" email, we determined that it is spam. This message alerts the recipient that their Webmail version is due to expire soon, so they are urged to renew it to avoid service interruptions. The goal of this phishing campaign is to deceive users into discl
Our research team discovered the logratiousity[.]com rogue page while investigating suspect websites. After examining this webpage, we learned that it promotes browser notification spam and generates redirects to different (likely unreliable/harmful) sites. Most visitors to logratiousity[.]com and
EXTEN is a ransomware-type program discovered by our researchers during a routine inspection of new file submissions to the VirusTotal site. Ransomware operates by encrypting data in order to demand ransoms for its decryption. On our testing system, EXTEN encrypted files and added a ".EXTEN" exte
Korvixnaro.co[.]in is a rogue webpage designed to endorse spam browser notifications and redirect users to other (likely untrustworthy/dangerous) sites. The majority of visitors to korvixnaro.co[.]in and similar pages access them through redirects produced by websites utilizing rogue advertising
Our research team found this fake "Nano Ethereum (NanoETH) Staking" page during a routine investigation of suspicious websites. It promises eligible users entry to an ongoing staking round. This scam operates as a crypto drainer, i.e., by stealing funds from exposed wallets. IMPORTANT NOTE:
Upon inspecting this "Action Required On Your Email Account" message, we determined that it is spam. This email states that the recipient's provider is implementing an update to the email service to improve its reliability and security. The spam campaign aims to deceive recipients into disclosing
While investigating suspect sites, our research team discovered this fake "Troll Coin" website (claim-trololol[.]io; possibly other domains). The page imitates the official site of the TROLL memecoin (troll.run). This scam aims to deceive users into exposing their digital wallets to a cryptocurren
Taro is a ransomware-type program discovered by our researchers during a routine inspection of new submissions to the VirusTotal website. This program is part of the MedusaLocker ransomware family. Malware within this classification works by encrypting data and demanding ransoms for the decryption
Our researchers discovered Bruk ransomware while reviewing new malware submissions to the VirusTotal website. This malicious program is designed to encrypt data and demand payment for the decryption. After we launched a sample of Bruk on our test machine, it encrypted files and added a ".{victim'
While investigating suspect websites, our researchers discovered the "McAfee Online Scan Completed" scam. It claims to have performed a system scan and detected a threat. The aim is to trick users into downloading/installing or purchasing a piece of software. It must be emphasized that this scam i