We have discovered this scheme during an inspection of a PDF file hosted on a dubious page. This scam site is supposed to provide a tool (Hacking Panel V2) for hacking Instagram accounts. Ultimately, users are directed to another web page. It is highly advisable not to trust such schemes to avoid
Our research team discovered the BackLock ransomware while investigating new submissions to the VirusTotal website. This malicious program operates by encrypting data to demand payment for the decryption. On our test machine, BackLock encrypted files and added a ".{victim's_ID}.backlock" extensio
ITSA is ransomware that our team discovered while inspecting malware samples uploaded to VirusTotal. Once executed, ITSA encrypts files and appends the ".itsa" extension to them. For example, it renames "1.jpg" to "1.jpg.ista", "2.png" to "2.png.itsa", and so forth. It also drops a ransom note ("D
RALEIGHRAD is ransomware our team discovered during a routine inspection of malware samples submitted to VirusTotal. Upon execution, RALEIGHRAD encrypts files and changes their extensions to ".RALEIGHRAD" (e.g., it renames "1.jpg" to "1.jpg.RALEIGHRAD", "2.png" to "2.png.RALEIGHRAD", etc.). Addit
Our team has inspected the page (grokgroup[.]icu) and discovered that it is a scam disguised as a cryptocurrency airdrop (giveaway). It is designed to trick individuals into believing they can receive free tokens. However, victims of this scam can suffer monetary loss, as scammers can steal all of
Our researchers found the ovateshidae.co[.]in rogue page while examining dubious websites. After inspecting this webpage, we determined that it promotes browser notification spam and redirects visitors to different (likely untrustworthy/dangerous) sites. Ovateshidae.co[.]in and similar pages are p
Our inspection of the "Staff ID Card" email revealed that it is spam. It is presented as a notification concerning the production of new ID cards for staff. This message seeks to trick recipients into disclosing their email log-in credentials to a phishing website. This spam email requests
We discovered LegionRoot ransomware while browsing new file submissions to the VirusTotal platform. Malware within this classification encrypts files and demands payment for the decryption. LegionRoot encrypts files and appends their names with a random character extension. For example, this rans
Our research team discovered the Bbq ransomware-type program while reviewing new submissions to VirusTotal. It belongs to the Makop ransomware family. Malicious software of this kind is designed to encrypt data and demand payment for the decryption. We learned that Bbq ransomware renames encrypte
Our inspection of the "PayPal - Money Received" email revealed that it is fake. Disguised as a notification from PayPal, it informs the account owner that they have been sent 899.99 USD and must verify the transfer. The goal of this phishing campaign is to extract recipients' PayPal log-in credent