After reading the "Payment Approved By International Authorities" email, we determined that it is spam. The letter states that the recipient can claim their 36 million USD payment. Typically, scammers behind mail of this kind seek victims' personal information or money. The spam email with
ScRansom is ransomware designed to encrypt files and provide a ransom note ("HOW TO RECOVERY FILES.TXT"). Also, ScRansom encodes filenames using base64 and adds ".Encrypted" extension to filenames. For example, it renames "1.jpg" to "MS5qcGc=.Encrypted", "2.png" to "Ni5qcGc=.Encrypted", and so for
Our inspection of the "cPanel - Server Glitch" email revealed that it is spam. This message falsely claims that emails failed delivery due to a server glitch. The purpose of this spam mail is to lure visitors into providing their log-in credentials to a phishing website. It must be emphasized tha
We have inspected this email and found that it is a fraudulent letter masquerading as a notification regarding a September payment schedule assigned to the recipient. Scammers use this email to extract personal information from recipients. Such schemes are known as phishing attempts. Whoever recei
BLX (also known as XLABB) is a stealer capable of exfiltrating a variety of sensitive data from victims' devices. The malware targets log-in credentials, cryptocurrency wallets, and other vulnerable information. At the time of writing, BLX is under active development. Its developers are promoting
Upon analyzing of penadee[.]com, we determined that it is a deceptive web page created to trick visitors into consenting to receive its notifications. Typically, notifications from sites like penadee[.]com are deceptive. For this reason, it is strongly recommended to avoid agreeing to receive noti
Ailurophile is an information stealer targeting Windows operating systems. Cybercriminals have been observed promoting Ailurophile on GitHub. Usually, malware like Ailurophile is utilized to harvest sensitive information that cybercriminals use to steal money, hijack personal accounts, extract mor
Our researchers discovered the Colony ransomware-type virus while investigating new submissions to the VirusTotal website. This malicious software encrypts data and demands ransoms for the decryption. On our testing system, Colony encrypted files and altered their names by adding the attackers' e
We have tested Victualry.app and found that it has traits of adware. Once installed, Victualry.app delivers annoying advertisements. Additionally, we discovered that Victualry.app belongs to the Pirrit family. It is highly advisable not to install such apps and uninstall them if they are already
Our team has reviewed plaucratertleed[.]com and discovered that its purpose is to receive permission to show notifications using a deceptive technique known as clickbait. As a rule, sites like plaucratertleed[.]com deliver unreliable notifications. Thus, they should not be permitted to send notifi