Our examination has revealed that PanelMotion operates as adware. Once it is installed, it can deliver unwanted and often misleading advertisements to promote questionable content. Also, the app may cause privacy and security risks. Thus, users should avoid installing PanelMotion and should remo
After reviewing this "SharePoint Document Delivery Notification" email, we determined that it is spam. This fake message is presented as a sent document notification from SharePoint. The goal of this spam campaign is to lure recipients into visiting a phishing website and disclosing their private
Jugingnonsne[.]com is a rogue page that promotes browser notification spam and produces redirects to various (likely unreliable/hazardous) websites. Most visitors to such webpages are redirected to them by sites that use rogue advertising networks. Our researchers discovered jugingnonsne[.]com whi
We have inspected the email and found that it contains a fake security notice from Trust Wallet. It is designed to appear legitimate and urgent to trick recipients into following the provided instructions. The scammers behind this fraudulent email intend to steal personal information through a fak
Cellik is an Android remote access Trojan (RAT) that has features typically found in high-end spyware. It can stream the screen live, record keystrokes, access the camera and microphone, browse the web, read notifications, and inject itself into other apps to steal information. Notably, it can be
SantaStealer is malicious software used to collect sensitive data from compromised systems. It is sold as a Malware-as-a-Service through Telegram channels and underground forums. Research suggests it was previously known as BluelineStealer. The malware avoids detection by running in memory and tra
While investigating suspect websites, our researchers discovered the news-jafexe[.]cc rogue page. It operates by promoting browser notification spam and generating redirects to different (likely unreliable/harmful) sites. Most users enter webpages like news-jafexe[.]cc via redirects produced by we
While investigating suspicious websites, our researchers discovered this fake "Hypurr Fun ($HFUN) Allocation" page. It is not associated with the actual Hypurr Fun platform. This scam aims to deceive victims into exposing their cryptowallets to a cryptocurrency drainer. IMPORTANT NOTE: We do
After examining this "DHL Express - Incomplete Address Information" email, we determined that it is fake. This spam message urges the recipient to update their shipping information to complete the delivery. The purpose of this phishing campaign is to deceive recipients into disclosing their email
Our inspection has shown that it is a fake email claiming to be regarding a payment receipt. It is designed to deceive unsuspecting recipients into opening the provided website and entering personal information. Victims of this scam may be unable to access their accounts and encounter further issu