Death is ransomware based on Chaos. We have discovered it while analysing malware samples submitted to VirusTotal. Upon execution, Death encrypts files, appends its extension (four random characters) to filenames, creates a ransom note ("YouCanRecoverFiles.txt"), and changes the desktop wallpaper.
Our researchers discovered this "Facebook Survey" scam while reviewing spam emails. The scam offers users exclusive rewards for completing a survey about their Facebook experience. It must be emphasized that this scam is not associated with the social media network. This is a phishing scam that ta
While inspecting spam emails, our researchers discovered the "Critical Payment Failed" scam. Upon further inspection, we determined that it is a multi-variant affiliate scam. It attempts to lure users into purchasing the promoted product/service by claiming that their subscription payment has fail
While inspecting untrustworthy websites, our research team discovered a fake "Chainbase Staking" webpage. This incredibly close imitation operates as a cryptocurrency drainer. It seeks to steal victims' digital assets by utilizing a draining mechanism. IMPORTANT NOTE: We do not review crypto
Our researchers discovered a fake Merkl webpage promising bogus rewards. It impersonates the Merkl platform (app.merkl.xyz) and lures users into exposing their digital wallets to a crypto drainer – an automated mechanism that siphons funds from exposed wallets. IMPORTANT NOTE: We do not revi
Our team has analysed the website (audius-eligibility[.]com) and learned that it masquerades as the original Audius (audius.co) site. The fake page is created by scammers who seek to trick individuals into completing steps that allow fraudsters to commit cryptocurrency theft. Users should avoid in
While browsing suspicious sites, our research team discovered the leonprous[.]com rogue webpage. It operates by promoting browser notification spam and redirecting visitors to other (likely unreliable/dangerous) websites. Leonprous[.]com and similar pages are most commonly accessed via redirects c
Bucremonan[.]com is a rogue webpage discovered by our researchers during a routine investigation. Upon examination, we learned that this page promotes spam browser notifications and redirects users to various (likely untrustworthy/malicious) websites. Most visitors to bucremonan[.]com and similar
Myro-migration.pages[.]dev is a fraudulent version of the migrate.fun site. The scam page has a similar design to trick visitors into believing they are on the real platform. The purpose of this deceptive page is to steal cryptocurrency. It should not be trusted and should be closed if ever encoun
After reviewing unonstistret[.]com, we determined that it is a misleading website that uses clickbait to trick visitors into enabling notifications. If notifications are allowed, the site can deliver unwanted ads, fake offers, and other unsafe messages. Users should avoid unonstistret[.]com and ne