Our analysis of the News Searcher Pro extension has shown that it is a browser hijacker. Once added, it changes the settings of a web browser to promote a fake search engine (obsrchrdr.com). Additionally, News Searcher Pro can read various data. This extension can expose users to scams and other o
Our examination of the "Service Update Notification" email revealed that it is spam. This message claims that a mail server update has to be implemented within 24 hours. The spam mail aims to deceive recipients into disclosing their email account log-in credentials to a phishing website. T
After examining this "Bitcoin Compensation Program" email, we determined that it is fake. This spam message claims that a large amount of Bitcoin cryptocurrency has been sent to the email recipient's cryptocurrency wallet. The goal of this spam campaign is to trick users into revealing their wall
Our research team found this "Beefy ($BIFI) Rewards" scam while investigating suspect websites. It masquerades as the Beefy (beefy.com) platform running a poll on a rewards proposal. It must be emphasized that this scam is not associated with Beefy or any other existing platforms and entities. Th
We have inspected the email and discovered that it is a fraudulent message posing as a notification from an email service provider. It contains a link to a fake site designed to steal personal information. Thus, we classified it as a phishing email. Recipients should ignore and delete it.
"Morpho voting scam" refers to a website that impersonates the Morpho (morpho.org) platform. The imitator page lures users with a poll, and those who are tricked into attempting to vote – unintentionally expose their digital wallets to a cryptocurrency drainer. IMPORTANT NOTE: We do not revi
While browsing suspicious websites, our research team found the stabilizeconnection.co[.]in rogue page. It is designed to endorse browser notification spam and redirect visitors to other (likely untrustworthy/dangerous) sites. Stabilizeconnection.co[.]in and similar webpages are primarily accessed
Our research team discovered RESOR5444 malware while inspecting new submissions to VirusTotal. This malicious program is categorized as ransomware. It operates by encrypting data and demanding ransoms for the decryption. On our test machine, RESOR5444 encrypted files and added an extension compos
PAKLOG is a type of malware called a keylogger. It tracks what the victim types on their keyboard and monitors what they copy to the clipboard. It collects and saves this information in a file on the infected computer. However, PAKLOG cannot send the data to cybercriminals directly, which means th
We have inspected rectionip.co[.]in and discovered that it is one of the many deceptive websites designed to trick visitors into allowing them to show notifications. Once permission is granted, rectionip.co[.]in bombards users with notifications containing fake warnings and other misleading messag