After examining this "Backup Your Email Address" message, we determined that it is spam. It alerts the recipient of an upcoming server update that can cause data loss within the email account. This spam mail urges the recipient to provide their log-in credentials to a phishing site. The sp
Our inspection of the "American Express - Sign-in Attempt Was Blocked" email revealed that it is fake. This phishing message is presented as a security alert concerning a suspicious sign-in attempt that was blocked. The goal is to deceive recipients into revealing their online bank account log-in
White Lock is a ransomware-type program. It operates by encrypting data and demanding payment for the decryption tools. This ransomware encrypts files and adds a ".fbin" extension to their names, e.g., a file initially titled "1.jpg" appeared as "1.jpg.fbin", "2.png" as "2.png.fbin", etc. After th
Klopatra is a Remote Access Trojan (RAT) that targets Android users. The malware both controls the device remotely and tricks victims into disclosing sensitive information, making it effective for banking fraud. Klopatra has been updated many times since March 2025, which shows that the malware is
Our researchers discovered the fake "Solana Sniper" webpage during a routine investigation. The scam operates as a cryptocurrency drainer – by draining funds from exposed digital wallets. It must be emphasized that this scam is not associated with any existing projects, platforms, or entities.
Our team has examined news-cizere[.]com and discovered that it has at least two designs. In both cases, the purpose of news-cizere[.]com is to deceive visitors into accepting its notifications. If allowed, the site can deliver misleading messages containing links to other unreliable websites.
While investigating suspicious websites, our research team discovered this fake "Mainnet Deployer" site. Upon further inspection, we determined that it is a phishing scam. This deceptive webpage aims to trick users into disclosing their cryptocurrency wallet log-in credentials. IMPORTANT NOT
Our analysis indicates that this is a fraudulent notification pretending to be from an email service provider. It contains a link to a fake website created to steal personal information. This type of scam is classified as a phishing attempt. Recipients should delete or ignore such emails to stay s
During our examination, we uncovered that drop.uptober[.]live is a fraudulent website designed to appear as the original UPTOBER website (uptober.fun) and promote a fake airdrop (giveaway). Its goal is to trick visitors into performing steps enabling scammers to steal their cryptocurrency. I
During our examination, we discovered that solrefund[.]live is a scam website designed to trick visitors into believing that they can claim rewards. It poses as the official Solana site (solana.com) to deceive users into taking actions that can lead to cryptocurrency theft. Overall, solrefund[.]li