Our researchers discovered this fake "MAV Token Eligibility Check" site (eligibility.maveclaim[.]xyz; other domains are not unlikely) during a routine inspection of suspicious websites. The scam is presented as Maverick Protocol (mav.xyz), and this fraudulent page claims that eligible users will r
We have examined watchspeedyheavilythe-file[.]top and found that it employs a deceptive tactic to gain permission to display notifications. If permitted, it may send various fraudulent notifications, leading users to unreliable websites. It is recommended to avoid watchspeedyheavilythe-file[.]top
This fake "Uniswap ($UNI) Airdrop" is presented as a giveaway on the Uniswap exchange (uniswap.org). The scam operates as a cryptocurrency drainer – by siphoning funds from exposed digital wallets. It must be emphasized that this scheme is in no way associated with the real Uniswap or any other ex
We have inspected initiatecurrenthighlythe-file[.]top and discovered that it uses a deceptive method to obtain permission to show notifications. If allowed, initiatecurrenthighlythe-file[.]top may bombard users with fake notifications to trick them into visiting unreliable pages. Therefore, it is
Our team has examined this email and concluded that it is a phishing email masquerading as a letter regarding salary changes. It is created to appear legitimate and trick unsuspecting recipients into disclosing personal information on a fake website. It is important to recognize such emails and av
While examining malware samples uploaded to VirusTotal, we discovered ransomware known as WeHaveSolution. After infiltration, WeHaveSolution encrypts files, changes the desktop wallpaper, drops a ransom note ("READ_NOTE.html"), and appends the ".wehavesolution247" extension to filenames. For exam
While inspecting dubious sites, our researchers discovered this fake "$MSC Token Airdrop" on app.mosaic[.]trading (keep in mind that it could be hosted elsewhere). The scam enticed users into exposing their digital wallet to a cryptocurrency drainer by promoting a fraudulent airdrop. Hence, victim
Our inspection of the "Webmail Validation Notice" email revealed that it is spam. This message claims that incoming emails are failing to reach the recipient's inbox due to an unresolved error. With this lure, the letter tricks users into visiting a phishing website that targets email account log-
PSLoramyra is a loader-type malware. Programs within this classification are designed to cause chain infections, i.e., download/install additional malware or malicious components. PSLoramyra is a rather sophisticated loader; it is considered a file-less malware since it executes its payload direct
While investigating new malware submissions to VirusTotal, our researchers discovered UwU ransomware. Malicious software within this classification encrypts data and demands payment for their decryption. On our test machine, UwU encrypted files and altered their filenames by appending them with a