RevC2 is backdoor malware delivered by cybercriminals through Venom Spider malware-as-a-service (MaaS) tools. It can steal sensitive information and enable remote code execution (RCE). The exact method of distribution for RevC2 is currently unknown. Threat actors were observed using the same MaaS
Venom Loader is a newly identified malware loader developed by the threat actor group known as Venom Spider. This loader is part of a broader malware-as-a-service (MaaS) operation, which also includes another malware, a backdoor known as RevC2. Venom Loader encodes its payload uniquely for each ta
Monokle is a spyware-type program that targets Android devices. It is capable of extracting extensive geolocation data, recording calls, reading messages, exfiltrating files, and performing other malicious activities. This malware was discovered on a device returned to its owner after it was seiz
We have inspected vidstreambox[.]com and found that it is an unreliable website designed to trick visitors into agreeing to receive its notifications. Vidstreambox[.]com uses clickbait to obtain permission to show notifications. Users should be careful when encountering sites like vidstreambox[.]c
Our analysis of the email reveals that it is a fraudulent notification about an unprocessed payment. The purpose of this scam is to deceive recipients into visiting the provided webpage and revealing personal information. It is strongly advisable to disregard this email and avoid engaging with its
Our discovery of Termite occurred while examining malware samples submitted to VirusTotal. We found that Termite is ransomware belonging to the Babuk family. Once the system is infected with Termite, the malware encrypts files, appends the ".termite" extension to filenames, and creates a ransom no
We have examined the email and concluded that it is a scam. Scammers created this fraudulent email to steal personal information from recipients. They disguised the email as a letter regarding a special holiday gift (a purchase discount). Recipients should ignore this email to avoid privacy risks.
Upon inspection, we determined that the "Your Office Account Storage Is Nearly Full" email is spam. It claims that the recipient's email account is close to reaching its storage limit. Thus, when users attempt to increase the storage – they are tricked into disclosing their email log-in credential
Our researchers discovered surgesignal[.]top rogue page while investigating dubious websites. After examining this webpage, we learned that it promotes browser notification spam and redirects users to other (likely unreliable/dangerous) sites. The majority of visitors to surgesignal[.]top and sim
We have inspected this email and discovered that it is designed to trick recipients into believing they have received a notification from an email service provider regarding a "space for the office account". Scammers behind this scheme seek to extract personal information from unsuspecting recipie