We have examined this email and determined that it is a phishing scam. The message is crafted to resemble a legitimate business inquiry from a company named Bayerische Industrie GmbH, requesting product quotations and technical documentation. It aims to trick recipients into visiting a fraudulent
We have reviewed this email and determined that it is malspam. It impersonates the Social Security Administration and falsely claims the recipient's annual statement is ready for download. Clicking the link inside leads to a fake verification site that delivers a trojanized ScreenConnect installer
MORTAR is ransomware we discovered during a routine inspection of new submissions to the VirusTotal website. It targets corporate networks, encrypts files, and drops a ransom note named README-[victim's ID].txt. On our test machine, MORTAR appended a unique victim ID as the extension to each encr
Our research team found the lerantixflowcore[.]co.in rogue page while investigating suspicious websites. After inspecting this webpage, we determined that it promotes browser notification spam and redirects visitors to other (likely unreliable/harmful) sites. Lerantixflowcore[.]co.in displ
Our researchers discovered vitisubiferive[.]com while investigating dubious websites. After examining this rogue page, we determined that it promotes browser notification spam and generates redirects to other (likely unreliable/dangerous) sites. Vitisubiferive[.]com uses a fake "confirm yo
Our research team discovered lantixprostream[.]co.in while investigating dubious websites. After examining this rogue page, we determined that it promotes browser notification spam and generates redirects to other (likely unreliable/dangerous) sites. Lantixprostream[.]co.in presents visito
EKZ Stealer is an information stealer designed to silently extract saved passwords, cookies, autofill data, and payment card details from web browsers on infected Windows computers. According to research by Arctic Wolf, it was first observed in May 2026 as part of a campaign targeting organization
While investigating suspicious websites, our researchers came across vote-flarefoundation[.]com, a fraudulent page impersonating the official Flare Network platform. The site lures visitors with a fake "FLR Season 2" voting rewards event. Its actual purpose is to steal cryptocurrency through a wal
DebugElevator is a credential-stealing malware distributed via a supply chain attack on popular Laravel PHP developer packages. According to research by StepSecurity, Aikido Security, and Socket, attackers compromised four Laravel Lang repositories and injected a dropper that silently downloads an
We have inspected this email and determined it is a phishing scam. Disguised as a routine service notification from Dropbox, it lures recipients into visiting a fraudulent website that steals their email account credentials. This email should be ignored. The email claims the recipient is n