Our analysis shows that monbridges[.]com runs the "You've Visited Illegal Infected Website" scam and requests permission to send notifications. If visitors agree to get notifications from monbridges[.]com, they risk being tricked into opening other untrustworthy and potentially malicious websites.
Our analysis has revealed that event-almanak[.]xyz is a deceptive website masquerading as the Almanak site (almanak.co) and designed to trick visitors into taking actions leading to the theft of their cryptocurrency. This fraudulent site should not be trusted to avoid the associated risks. I
Asyl is ransomware belonging to the Makop family. Our team has discovered it during an examination of samples submitted to VirusTotal. Once a device is infected with Asyl, the ransomware encrypts files, changes the desktop wallpaper, provides a ransom note ("+README-WARNING+.txt"), and modifies fi
We have reviewed the site (santagifts[.]top) and found that it is a copy of the Santa Token website (santatokensol.io). It is designed to trick visitors into connecting their wallets to participate in an airdrop (to receive free tokens). The scammers behind it aim to steal cryptocurrency by draini
Our examination has revealed that rbtchk11.co[.]in is an untrustworthy website that uses clickbait to trick visitors into consenting to receive notifications. If permission is given, rbtchk11.co[.]in can show misleading notifications (e.g., fake alerts) to promote other potentially malicious sites
While testing ProcessOffers, we uncovered that this is an unwanted application designed to deliver unwanted and annoying advertisements. Apps of this type are classified as adware. Moreover, our analysis shows that multiple security vendors flag ProcessOffers as malicious. Thus, users should avo
Our team has discovered that this is a phishing email posing as an important notification from the "email security team". It contains a deceptive link designed to open a fake web page (a phishing site). On that site, visitors are instructed to disclose personal information. The consequence of fall
We have reviewed the email and determined that it is a phishing attempt disguised as a notification from the email service provider. Fraudsters behind this scam email aim to deceive recipients into opening a fake website and entering personal information. Victims of this scam may lose access to pe
Our analysis has revealed that this website (2025-event[.]xyz) is fraudulent. It poses as the original Solana site (solana.com) to lure visitors into taking actions that can result in cryptocurrency theft. It is highly advisable to examine crypto-related pages before interacting with them to avoid
While analysing malware samples uploaded to VirusTotal, we found Ripper, which is ransomware designed to encrpypt files. In addition to blocking access to files, Ripper changes the desktop wallpaper, creates a ransom note ("READ_NOTE.html"), and appends the ".ripper12" extension to files. For ins