After inspecting this "Human Resources Report" email, we determined that it is fake. This spam message claims that the recipient can now access the monthly report from their HR department. This campaign aims to deceive recipients into disclosing their email account log-in credentials to a phishing
During a routine investigative session, our researchers discovered this fake "SimpleX Chat" webpage. It impersonates the SimpleX Chat's official site (simplex.chat) and promises boons to founding users. The scam's goal is to deceive users into exposing their digital wallets to a crypto drainer.
While investigating suspicious websites, our researchers discovered the "Cloudflare Checking If The Site Connection Is Secure" scam. It imitates a Cloudflare CAPTCHA verification page. Upon examination, we determined that it operates as a ClickFix scam, attempting to trick victims into infecting t
We have inspected the website (moonshotvotes[.]live) and concluded that it is a scam. Its purpose is to trick visitors into believing that it is a legitimate crypto platform and connecting their wallets. If users do so, they risk losing their crypto holdings. Thus, this fraudulent page should be a
While inspecting inurnable.co[.]in, we discovered that it is created to deceive visitors into agreeing to get its notifications. This is not a trustworthy website that can send misleading notifications designed to promote other untrustworthy sites. If encountered, inurnable.co[.]in should be close
Our researchers discovered the Cracker ransomware while investigating new submissions to the VirusTotal website. This malicious program is based on the Beast ransomware. After we executed a sample of Cracker (Beast) ransomware on our test machine, it encrypted files and altered their filenames. O
We have examined corechainedge[.]com and found that it uses deceptive techniques to persuade users to enable notifications. Once permission is granted, the site can deliver fake alerts, promotions, and other messages with links to suspicious or potentially harmful websites. Pages like this should
ChimeraWire is a type of malware (a Trojan) that runs on Windows computers. It uses the functionality of open-source tools called zlsgo and Rod, which are normally used to automate actions on websites. This malware controls Chrome to simulate human browsing behavior, making websites appear more po
Our team analyzed reirnately[.]com and discovered that it employs misleading methods to get users to allow notifications. After permission is given, the site can send bogus alerts, offers, and other kinds of messages containing links to questionable and potentially malicious websites. This and sim
Rusty Lockbox (also known as Rusty Locker) is ransomware that we discovered during a routine inspection of malware samples uploaded to VirusTotal. After execution, Rusty Lockbox encrypts files and renames them by replacing their filenames with a random string of characters and appending its extens