Banana RAT is a banking Remote Access Trojan (RAT) that targets people who bank in Brazil. According to research by Trend Micro, the malware lets attackers watch the victim's screen in real time, take over the keyboard and mouse, log keystrokes, and overlay fake bank or Windows Update screens whil
Our researchers discovered boutonaassly[.]com while investigating dubious websites. After examining this rogue page, we determined that it promotes browser notification spam and generates redirects to other (likely unreliable/dangerous) sites. Boutonaassly[.]com displays a plain black page
Our analysis has revealed that growthzonelabs[.]com is designed to trick visitors into allowing browser notifications. The site uses a fake CAPTCHA as a lure. Once permitted, it can deliver fake security warnings and other misleading alerts that expose users to various online threats. Grow
While investigating suspicious websites, our research team identified sessionactivex[.]com as a rogue page that tricks visitors into granting browser notification permissions. It uses a fake CAPTCHA prompt as the lure. Once permission is granted, the site delivers fake security alerts and other mi
Mirax RAT is a Remote Access Trojan targeting Android devices. First analyzed by the Cleafy Threat Intelligence Team in March 2026, it primarily focuses on Spanish-speaking users and is designed to spy on victims, steal sensitive data, and silently route internet traffic through infected phones.
"MetaMask email scam" is a phishing spam campaign. The scam emails are disguised as verification requests from MetaMask - cryptocurrency wallet software interacting with the Ethereum blockchain. It must be emphasized that these letters are fake and in no way associated with ConsenSys Software Inc.
While investigating suspicious sites, our researchers found this fake "dYdX" webpage. It is a close visual copy of the dYdX decentralized exchange platform (dydx.xyz). Users deceived into connecting their digital wallets to this scam page inadvertently expose them to a cryptocurrency drainer. Vict
"SOLANA (SOL) Giveaway" is the name of a scam promoted on various deceptive websites. The scheme offers to double Solana (SOL) cryptocurrency contributions that users make to the fake program. Instead, users simply lose all that they transfer to this scam. Deceptive sites are typically accessed v
We have inspected the site (claims-qubic[.]com) and concluded that it is a fake platform that imitates the original Qubic web page (qubic.org). The purpose of the deceptive site is to trick visitors into taking steps that would allow scammers to steal their crypto holdings. IMPORTANT NOTE: W
Our researchers discovered this fake "Giza Rewards" webpage during a routine investigation. This page imitates the Giza platform (gizatech.xyz), yet bears no actual association with it. The scam lures users with a promise of rewards into exposing their digital wallets to a cryptocurrency drainer.
The operators behind the SHub macOS infostealer have introduced a more sophisticated variant called "Reaper." This shows how macOS-focused malware keeps evolving, moving beyond basic credential theft into persistent, multi-stage compromise operations. The latest campaign blends social engineering,
The npm ecosystem is facing one of its most aggressive and technically sophisticated supply chain attacks to date. Over the past several months, security researchers have uncovered a sprawling malware campaign known as Shai-Hulud and its newer variant, Mini Shai-Hulud, which compromised hundreds of
The rapid rise of open-source repositories of artificial intelligence has transformed platforms like Hugging Face into critical infrastructure for developers, researchers, and enterprises. Millions of users rely on these repositories to download models, datasets, and applications that accelerate AI
The lines between cybercrime and state-sponsored espionage continue to blur. Iranian threat actors now adopt ransomware tradecraft to conceal intelligence-gathering operations. Recent investigations into attacks by the Iranian-linked MuddyWater group show a sophisticated evolution in tactics. Here,
The global cybercrime landscape in 2026 shows a sharp convergence of state-sponsored hacking, transnational fraud networks, and highly industrialized scam operations. Cryptocurrency remains at the center, offering both high-value targets and efficient laundering methods. Recent reports from TRM Labs
Combo Cleaner is an all-in-one solution developed by RCS LT, the company behind PCrisk.com. Making a powerful entrance as a comprehensive antivirus and system optimization solution, it's here to shield you from various threats on Windows, macOS, Android, and iOS.
When assessing the best way to reclaim your privacy, the personal data removal service Incogni is a popular option. It works by automatically sending requests to data brokers and people-search websites, erasing personal information from their databases.
Launched in 2010 by the privacy company Abine and based in the U.S., DeleteMe has over a decade of experience in cleaning up personal information from the web. This review examines DeleteMe's pricing, features, performance, and value.
Optery stands out as the most flexible personal data removal service. Optery may not be overflowing with the advanced features of more expensive services, but it's getting the results done, and lets you only pay for the level of security you require.
When it comes to Privacy Bee, a privacy protection service that scrubs your personal information from data broker databases and public listings, this review, written by the PCrisk team, will be a solid reference.