Albiriox is a sophisticated Android-specific RAT (Remote Access Trojan) with extensive banking trojan capabilities. Its target list covers over 400 banks and financial services. This malware first emerged in September 2025 and was subsequently offered as MaaS (Malware-as-a-Service) a month later.
Our review of the "MetaMask 2FA Activation" email revealed that it is fake. This spam message informs recipients that they must enable 2FA on their cryptowallets. This spam campaign is not associated with the actual MetaMask. The purpose of this scam is to steal victims' digital wallets. T
We have examined the website and concluded that it uses a scare tactic (displays a fake warning) to trick visitors into performing certain actions. Typically, scam websites like this one are used to steal information or money, distribute malware, or serve other malicious purposes. It is highly adv
After inspecting this "Roundcube Pending Messages" email, we determined that it is fake. It is a phishing scam targeting email account log-in credentials (passwords) by claiming that multiple messages failed to reach the inbox. The spam email with the subject "Urgent message 11/17/2025 4:2
Our analysis of the email has shown that it contains a deceptive message with a link to a fake website. The email is disguised as an important security update to trick recipients into revealing personal information. The ultimate goal is to steal cryptocurrency. Recipients should ignore this email.
Our team has examined news-hudusa[.]cc and discovered that it uses clickbait to obtain permission to show notifications. If users agree to receive those notifications, they can be exposed to various online threats (e.g., scams and malware). Thus, news-hudusa[.]cc should not be trusted. New
We have inspected the email and discovered that it is a phishing attempt disguised as a message from an email service provider. The purpose of this fraudulent email is to trick recipients into opening a fake site and providing personal information. Scammers behind it aim to hijack personal account
Our examination of the email has shown that it is a phishing attempt. The message is designed to appear as a security notification from an email service provider. The scammers behind it seek to deceive recipients into sharing personal information on a fake web page. This email should be ignored to
We have checked the page (hyperunit[.]vc) and determined that it mimics the original Unit site (hyperunit.xyz) to trick visitors into compromising their cryptocurrency wallets. Victims of this scam may end up losing their crypto holdings. It is highly advisable not to trust this deceptive page to
Our research team discovered the news-hedebe[.]cc rogue page while browsing suspicious websites. This webpage is designed to promote browser notification spam and redirect visitors to different (likely untrustworthy/harmful) sites. News-hedebe[.]cc and similar webpages are most commonly accessed t