RemotePE is a Remote Access Trojan (RAT) attributed to the Lazarus Group, a North Korean state-sponsored hacking collective. According to research by Fox-IT, RemotePE runs entirely in memory and never writes itself to disk, making it extremely difficult to detect with conventional security softwar
After examining this email, we determined that it is a phishing scam. The message poses as an automated alert from a mail security service, claiming the recipient's email deliverability settings need immediate attention. It tricks recipients into clicking a link that leads to a fake website design
We have examined this email and determined it is a phishing scam. It impersonates cPanel Webmail with a false claim that the recipient's mailbox is pending deletion. The scammers behind it seek to steal email login credentials, and the message should be ignored to avoid account compromise.
During our investigation of dubious websites, our team examined tokendisbursement[.]xyz and found that it promotes a fake cryptocurrency airdrop for Red Kitten Crew ($RKC) tokens. The site claims to offer an official distribution of $RKC on the Solana ecosystem. In reality, it is a fraudulent page
During our examination of dubious websites, our researchers came across opneclawai[.]top - a fraudulent page mimicking the legitimate OpenClaw AI platform (openclaw.ai). The site poses as an AI-powered trading analyst for Solana tokens and prompts visitors to connect their cryptocurrency wallets.
After reviewing this email, it has become evident that it is a fraudulent message impersonating PayPal and sent by malicious actors. The intention behind this email is to trick recipients into divulging sensitive data and potentially initiating financial transfers. Thus, recipients are strongly ad
Pulse is a Chromium-based browser. It is promoted as an Internet browser that integrates AI (Artificial Intelligence). Upon inspection, we determined that this rogue browser is a PUA (Potentially Unwanted Application). It produces redirects to several fake search engines that cannot generate searc
Search1.me is the address of a fake search engine. Typically, such web searchers are promoted by PUAs (Potentially Unwanted Applications) classified as browser hijackers. Search1.me has been observed being pushed by the Better Search browser hijacker. Browser hijackers promote fraudulent w
The WebWebWeb.com browser hijacker infiltrates Internet browsers (Google Chrome and Mozilla Firefox) through free software downloads. At time of testing, this website was promoted via an application called 'video downloader professional'. Developers of this browser settings-changing adware (LINK6
.Xyz is a new variant of Jigsaw ransomware. Following infiltration, this ransomware encrypts various files stored on victims' computers. This is achieved using asymmetric cryptography. During encryption, this ransomware appends the name of each encrypted file with a ".xyz" extension and, thus, it
The operators behind the SHub macOS infostealer have introduced a more sophisticated variant called "Reaper." This shows how macOS-focused malware keeps evolving, moving beyond basic credential theft into persistent, multi-stage compromise operations. The latest campaign blends social engineering,
The npm ecosystem is facing one of its most aggressive and technically sophisticated supply chain attacks to date. Over the past several months, security researchers have uncovered a sprawling malware campaign known as Shai-Hulud and its newer variant, Mini Shai-Hulud, which compromised hundreds of
The rapid rise of open-source repositories of artificial intelligence has transformed platforms like Hugging Face into critical infrastructure for developers, researchers, and enterprises. Millions of users rely on these repositories to download models, datasets, and applications that accelerate AI
The lines between cybercrime and state-sponsored espionage continue to blur. Iranian threat actors now adopt ransomware tradecraft to conceal intelligence-gathering operations. Recent investigations into attacks by the Iranian-linked MuddyWater group show a sophisticated evolution in tactics. Here,
The global cybercrime landscape in 2026 shows a sharp convergence of state-sponsored hacking, transnational fraud networks, and highly industrialized scam operations. Cryptocurrency remains at the center, offering both high-value targets and efficient laundering methods. Recent reports from TRM Labs
Combo Cleaner is an all-in-one solution developed by RCS LT, the company behind PCrisk.com. Making a powerful entrance as a comprehensive antivirus and system optimization solution, it's here to shield you from various threats on Windows, macOS, Android, and iOS.
When assessing the best way to reclaim your privacy, the personal data removal service Incogni is a popular option. It works by automatically sending requests to data brokers and people-search websites, erasing personal information from their databases.
Launched in 2010 by the privacy company Abine and based in the U.S., DeleteMe has over a decade of experience in cleaning up personal information from the web. This review examines DeleteMe's pricing, features, performance, and value.
Optery stands out as the most flexible personal data removal service. Optery may not be overflowing with the advanced features of more expensive services, but it's getting the results done, and lets you only pay for the level of security you require.
When it comes to Privacy Bee, a privacy protection service that scrubs your personal information from data broker databases and public listings, this review, written by the PCrisk team, will be a solid reference.