Our research team came across news-temodu[.]com while looking into suspicious websites. It turned out to be a rogue page - one that tries to trick visitors into enabling browser notifications by presenting a fake identity verification prompt. If the permission is granted, news-temodu[.]com can sta
Mightytechy.com is a search engine that is spread through browser hijackers and unwanted apps. Its users may encounter various scams and other potentially malicious content. For this reason, mightytechy.com is considered an unreliable search engine. Users should avoid it and remove it, along with
We have inspected the email and concluded that it is a phishing attempt. The message is disguised as a notification from the email provider. However, it includes a link to a fake website designed to steal personal information. Victims of this scam can have their accounts hijacked and encounter fur
Our team reviewed the email and determined that it was created by scammers trying to make recipients believe it came from their email provider. The purpose is to deceive users into entering personal information on a fake website. Emails like this are classified as phishing attempts. They should be
Our team has examined the email and found that it is written by scammers who aim to trick recipients into believing that they have received a notification from their email provider. Their goal is to steal personal information via a deceptive site. Such emails are classified as phishing attempts.
Remus is a stealer associated with Lumma. It shares similar capabilities, including the ability to steal browser passwords, cookies, and cryptocurrency wallet information. It is considered to be an evolution of Lumma (not a separate malware). Remus uses new techniques such as EtherHiding and impro
Marco is an information stealer that targets browser data, cryptocurrency wallets, and sensitive files stored on infected devices or in cloud services. The malware also gathers system details and uses techniques such as encryption and disabling security tools to avoid detection. It sends stolen da
AtlasCross is a Remote Access Trojan (RAT) that lets attackers secretly control a victim's computer. It is known that cybercriminals target mainly Chinese-speaking users and use fake download websites for popular apps to distribute the RAT. AtlasCross is also designed to avoid detection. C
During our inspection, we discovered that hyperswaps-voting-com.pages[.]dev is a deceptive website designed to promote a fake cryptocurrency giveaway. If unsuspecting visitors follow the site's instructions, they risk losing their cryptocurrency holdings. This fake giveaway should be avoided.
Our team has examined the message and concluded that it is a fake "suspension notification" designed to trick recipients into opening a fraudulent login site. That page is used to steal personal information. Emails of this type are classified as phishing attempts. They should be recognized as igno