BAVACAI is ransomware that we discovered while examining malware samples submitted to VirusTotal. It belongs to the MedusaLocker ransomware family. BAVACAI encrypts files stored on the victim's computer and exfiltrates data from the network, then demands a ransom in exchange for decryption and to
We have reviewed the email and concluded that it is a phishing scam. It is disguised as a notification regarding a mail server error. The scammers behind it seek to trick unsuspecting recipients into clicking the provided link and entering personal information on the opened deceptive website. Reci
MiniRAT is a type of malware known as a remote access Trojan (RAT) that targets macOS systems. It is designed to give attackers control over an infected device. This threat is written in the Go programming language and is designed to stay hidden. It can detect if it is being analyzed in a virtua
BARADAI is ransomware we found while examining malware samples submitted to VirusTotal. It belongs to the MedusaLocker ransomware family. Upon infiltrating a system, BARADAI encrypts files, appends the ".BARADAI" extension to their filenames, and creates an HTML ransom note. On our test machine,
After reviewing the email, we determined that it is a misleading message pretending to come from a cloud service provider. It directs users to fraudulent websites that display false warnings and instructions intended to deceive visitors into taking certain actions. The email should be ignored and
Search1.me is the address of a fake search engine. Typically, such web searchers are promoted by PUAs (Potentially Unwanted Applications) classified as browser hijackers. Search1.me has been observed being pushed by the Better Search browser hijacker. Browser hijackers promote fraudulent w
The WebWebWeb.com browser hijacker infiltrates Internet browsers (Google Chrome and Mozilla Firefox) through free software downloads. At time of testing, this website was promoted via an application called 'video downloader professional'. Developers of this browser settings-changing adware (LINK6
We have reviewed the email and determined that it is a scam disguised as a "Microsoft security update". It contains deceptive links (disguised as options) leading to malicious downloads. Recipients should ignore this fraudulent message to avoid computer infections and further issues. The e
We have discovered this scheme during an inspection of a PDF file hosted on a dubious page. This scam site is supposed to provide a tool (Hacking Panel V2) for hacking Instagram accounts. Ultimately, users are directed to another web page. It is highly advisable not to trust such schemes to avoid
We have inspected the site (valbox[.]live) and concluded that it is a scam website promoting a fake giveaway. The purpose of this scam web page is to trick individuals into disclosing personal information. Users should avoid providing any details on dubious sites to avoid potential consequences.
The emergence of Bluekit, as recorded by security researchers at Varonis, marks a significant evolution in the phishing-as-a-service (PhaaS) ecosystem. It shows how cybercrime continues to industrialize through automation, centralization, and the integration of artificial intelligence. Recent resea
Cybercriminals keep showing that the easiest way into an enterprise is often through trust, not software vulnerabilities. Google's Mandiant Team discovered a new threat actor, UNC6692, that proves this point. This group weaponizes Microsoft Teams, abuses helpdesk impersonation, and deploys a custom
Ransomware operators adopt whatever creates the most pressure on victims. This may mean faster encryption, stronger extortion tactics, or deeper attacks on virtual infrastructure. In 2026, the Kyber ransomware group added a new layer of psychological and technical pressure by claiming to use post-qu
Ransomware operators continue to refine their playbooks. The latest evolution of the Gentlemen ransomware shows how fast these groups adapt to scale and stay stealthy. It began as a relatively new ransomware-as-a-service (RaaS) operation in mid-2025. It has already matured into a more dangerous ente
The emergence of AI-driven cybercrime platforms has fundamentally reshaped the threat landscape. Few developments illustrate this shift more clearly than the ATHR platform and its enablement of Telephone-Oriented Attack Delivery (TOAD) attacks. By combining traditional social engineering with advanc
Combo Cleaner is an all-in-one solution developed by RCS LT, the company behind PCrisk.com. Making a powerful entrance as a comprehensive antivirus and system optimization solution, it's here to shield you from various threats on Windows, macOS, Android, and iOS.
When assessing the best way to reclaim your privacy, the personal data removal service Incogni is a popular option. It works by automatically sending requests to data brokers and people-search websites, erasing personal information from their databases.
Launched in 2010 by the privacy company Abine and based in the U.S., DeleteMe has over a decade of experience in cleaning up personal information from the web. This review examines DeleteMe's pricing, features, performance, and value.
Optery stands out as the most flexible personal data removal service. Optery may not be overflowing with the advanced features of more expensive services, but it's getting the results done, and lets you only pay for the level of security you require.
When it comes to Privacy Bee, a privacy protection service that scrubs your personal information from data broker databases and public listings, this review, written by the PCrisk team, will be a solid reference.