ZeroDayRAT is a remote access trojan (RAT) sold through Telegram channels. The RAT alows cybercriminals to control infected devices remotely. It targets various versions of both Android and iOS systems. ZeroDayRAT supports activities such as live monitoring, data extraction, and financial exploita
We have reviewed the email and found it to be a phishing attempt posing as an urgent notice from the email service provider. The message is designed to look urgent and important to deceive recipients into opening a fraudulent site and disclosing personal information. Recipients should not respond
After analysing the email, we determined that it is a phishing attempt disguised as a notification regarding an email account closure. This fraudulent message is crafted to appear urgent and important in order to trick recipients into entering personal information on a fake website. This email sho
Phexia is a type of malware that targets macOS devices. It can steal sensitive information from infected systems. The malware also includes a backdoor that gives attackers remote access. Usually, malware like Phexia is used to harvest various details that can be misused for malicious purposes an
Our inspection has revealed that it is a phishing email designed to look like an important notification from the email service provider. It includes a link to a fake website designed to steal personal details. Victims of this scam can lose access to their email and possibly other accounts.
We have examined the website (claim-liquid.pages[.]dev) and found that it is designed to steal cryptocurrency from victims and promotes a fake airdrop (giveaway) as a lure. Moreover, the site mimics the original MemeLiquid site (memeliquid.io) to appear legitimate. Users should avoid the fake webs
While inspecting malware samples uploaded to VirusTotal, we discovered BuP1w, a ransomware that encrypts data and appends the ".BuP!w3" extension to files. For instance, it renames "1.jpg" to "1.jpg.BuP!w3", "2.png" to "2.png.BuP!w3", "3.exe" to "3.exe.BuP!w3", etc. This ransomware also changes th
During our investigation, we determined that stratochainedge[.]com is a deceptive webpage created to trick users into allowing notifications. Once permission is granted, the site floods the device with fake alerts and misleading messages that may redirect users to scams and other unreliable or pot
Our team has reviewed the message and concluded that it is written by scammers seeking to steal personal information. Such scams are classified as phishing attempts. Falling for them can result in account compromise and additional issues. Recipients should ignore this email to avoid the potential
0apt Locker is ransomware that prevents access to files by encrypting them. In addition to encrypting data, 0apt Locker appends the ".0apt" extension to files, changes the desktop wallpaper, and provides a ransom note ("README0apt.txt"). An example of how files are renamed: "1.jpg" is changed to "