We inspected the Pure Safety browser extension and found it has the traits of a browser hijacker. Once added to a web browser, it changes certain settings to promote pureextension.net, which is a fake search engine. The extension claims to display website safety scores directly in browser search
We inspected this email and found it to be a phishing scam. The message pretends to be a payslip notification sent from an employer's payroll department. Its real goal is to steal email login credentials by directing recipients to a fake webmail page. The email should be ignored. The email
Prinz Eugen is ransomware written in the Go programming language and first publicly documented by ThreatDown; our team also examined samples submitted to VirusTotal. It encrypts files and appends a .prinzeugen extension to every affected filename, making them impossible to open. On our test machi
During our investigation of suspicious websites, we examined tkstio.pages[.]dev and found it promotes a fake cryptocurrency airdrop for $TKST tokens. The site is designed to trick visitors into connecting their cryptocurrency wallets, which activates a drainer that silently moves funds to the scam
We have examined this email and determined it is a phishing scam. The message is disguised as an urgent security notice from the recipient's email service provider, falsely claiming that their password is about to expire. Its goal is to lure recipients into clicking fraudulent links that lead to a
LOCK belongs to the Xorist ransomware family. Like most programs of this type, it prevents victims from accessing their files by encryption. LOCK also renames every encrypted file by appending the ".LOCK" extension to its filename. For example, it renames "1.jpg" to "1.jpg.LOCK", "2.jpg" to "2.jpg
During our investigation of suspicious cryptocurrency sites, our team came across apyx[.]team - a fraudulent page promoting a fake "APYX Token Launch" voting event. The site claims visitors can earn rewards by casting a "Genesis Vote," but it is actually designed to steal cryptocurrency by trickin
The WebWebWeb.com browser hijacker infiltrates Internet browsers (Google Chrome and Mozilla Firefox) through free software downloads. At time of testing, this website was promoted via an application called 'video downloader professional'. Developers of this browser settings-changing adware (LINK6
Our researchers discovered the "You May Have Viruses On After Visiting An Adult Website" scam while inspecting dubious websites. We found two variants of this scheme - one in English and the other in Portuguese. Like most scams of this kind, "You May Have Viruses On After Visiting An Adult Webs
Our team has examined the email and concluded that it is a scam (a phishing attempt). The email is disguised as a notification regarding the SumUp account suspension. SumUp is a legitimate financial technology company that has nothing to do with this fraudulent email. Recipients should ignore this
Enterprise security teams have spent years hardening identity platforms, enforcing multifactor authentication, and strengthening endpoint security. Yet the latest compromise involving competitive intelligence platform Klue shows a different route into corporate environments: trusted third-party inte
Android banking malware has steadily evolved over the past decade. What once focused primarily on stealing banking credentials has transformed into sophisticated platforms capable of remotely controlling entire devices. The emergence of Rokarolla demonstrates just how far this evolution has progress
The compromise of more than 400 packages in the Arch User Repository (AUR) is one of the most significant, if not the most significant, Linux software supply chain incidents of 2026. More importantly, the campaign shows that threat actors increasingly target the trust relationships that underpin ope
The recent surge in supply chain-focused attacks and leaked malware tooling has underscored a structural shift in modern cybercrime: attackers are no longer relying solely on isolated exploits but are increasingly industrializing malware development and distribution through developer ecosystems. Ac
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a newly exploited SolarWinds Serv-U vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, signaling active targeting of organizations running vulnerable versions of the managed file transfer platform. The
Combo Cleaner is an all-in-one solution developed by RCS LT, the company behind PCrisk.com. Making a powerful entrance as a comprehensive antivirus and system optimization solution, it's here to shield you from various threats on Windows, macOS, Android, and iOS.
When assessing the best way to reclaim your privacy, the personal data removal service Incogni is a popular option. It works by automatically sending requests to data brokers and people-search websites, erasing personal information from their databases.
Launched in 2010 by the privacy company Abine and based in the U.S., DeleteMe has over a decade of experience in cleaning up personal information from the web. This review examines DeleteMe's pricing, features, performance, and value.
Optery stands out as the most flexible personal data removal service. Optery may not be overflowing with the advanced features of more expensive services, but it's getting the results done, and lets you only pay for the level of security you require.
When it comes to Privacy Bee, a privacy protection service that scrubs your personal information from data broker databases and public listings, this review, written by the PCrisk team, will be a solid reference.