QUIC RAT is a Remote Access Trojan (RAT) that lets attackers secretly control infected Windows computers. Kaspersky researchers documented its use during a supply chain attack on Daemon Tools, a widely used Windows disc-imaging utility, in which trojanized installers signed with valid certificates
CallPhantom is a cluster of fraudulent Android applications distributed through the official Google Play Store. These apps falsely promised to retrieve call logs, SMS records, and WhatsApp history for any phone number. According to ESET researchers, the 28 apps in this campaign amassed over 7.3 mi
After inspecting this email, we determined that it is a phishing scam. The message is disguised as a business invitation to review a Request for Quotation (RFQ), but its real purpose is to send recipients to a fake email login page that steals account credentials. The email should be ignored to av
Our researchers investigated Search Control for Chrome and found it to be a browser hijacker. This extension changes the browser's default search engine to search.capredirectapp.com - a fake search engine that cannot generate its own results. Users who have Search Control for Chrome installed are
During an investigation of dubious websites, our researchers discovered jupag[.]pro - a page built to mimic the legitimate Jupiter platform. The site falsely claims that visitors have frozen JUP token allocations waiting to be claimed. In reality, it is a cryptocurrency drainer designed to steal d
"MetaMask email scam" is a phishing spam campaign. The scam emails are disguised as verification requests from MetaMask - cryptocurrency wallet software interacting with the Ethereum blockchain. It must be emphasized that these letters are fake and in no way associated with ConsenSys Software Inc.
While investigating suspicious sites, our researchers found this fake "dYdX" webpage. It is a close visual copy of the dYdX decentralized exchange platform (dydx.xyz). Users deceived into connecting their digital wallets to this scam page inadvertently expose them to a cryptocurrency drainer. Vict
We have inspected the site (claims-qubic[.]com) and concluded that it is a fake platform that imitates the original Qubic web page (qubic.org). The purpose of the deceptive site is to trick visitors into taking steps that would allow scammers to steal their crypto holdings. IMPORTANT NOTE: W
Our researchers discovered this fake "Giza Rewards" webpage during a routine investigation. This page imitates the Giza platform (gizatech.xyz), yet bears no actual association with it. The scam lures users with a promise of rewards into exposing their digital wallets to a cryptocurrency drainer.
doubleclick.net is a legitimate advertising service provided by Google, however, some cyber criminals use the pubads.g.doubleclick.net site to force users to visit various other adware-type websites. If you encounter these redirects or pop-ups (or other ads) that open with pubads.g.doubleclick.net
The operators behind the SHub macOS infostealer have introduced a more sophisticated variant called "Reaper." This shows how macOS-focused malware keeps evolving, moving beyond basic credential theft into persistent, multi-stage compromise operations. The latest campaign blends social engineering,
The npm ecosystem is facing one of its most aggressive and technically sophisticated supply chain attacks to date. Over the past several months, security researchers have uncovered a sprawling malware campaign known as Shai-Hulud and its newer variant, Mini Shai-Hulud, which compromised hundreds of
The rapid rise of open-source repositories of artificial intelligence has transformed platforms like Hugging Face into critical infrastructure for developers, researchers, and enterprises. Millions of users rely on these repositories to download models, datasets, and applications that accelerate AI
The lines between cybercrime and state-sponsored espionage continue to blur. Iranian threat actors now adopt ransomware tradecraft to conceal intelligence-gathering operations. Recent investigations into attacks by the Iranian-linked MuddyWater group show a sophisticated evolution in tactics. Here,
The global cybercrime landscape in 2026 shows a sharp convergence of state-sponsored hacking, transnational fraud networks, and highly industrialized scam operations. Cryptocurrency remains at the center, offering both high-value targets and efficient laundering methods. Recent reports from TRM Labs
Combo Cleaner is an all-in-one solution developed by RCS LT, the company behind PCrisk.com. Making a powerful entrance as a comprehensive antivirus and system optimization solution, it's here to shield you from various threats on Windows, macOS, Android, and iOS.
When assessing the best way to reclaim your privacy, the personal data removal service Incogni is a popular option. It works by automatically sending requests to data brokers and people-search websites, erasing personal information from their databases.
Launched in 2010 by the privacy company Abine and based in the U.S., DeleteMe has over a decade of experience in cleaning up personal information from the web. This review examines DeleteMe's pricing, features, performance, and value.
Optery stands out as the most flexible personal data removal service. Optery may not be overflowing with the advanced features of more expensive services, but it's getting the results done, and lets you only pay for the level of security you require.
When it comes to Privacy Bee, a privacy protection service that scrubs your personal information from data broker databases and public listings, this review, written by the PCrisk team, will be a solid reference.