Black Shrantac is a ransomware-type program designed to encrypt victims' data and demand ransoms for the decryption. After executing a sample of this malware on our test machine, we discovered that it encrypts files, renames them, changes the desktop wallpaper, and creates a ransom note. To elabo
Our researchers discovered the batorathanding.co[.]in rogue page while investigating untrustworthy websites. Upon examination, we learned that this webpage promotes browser notification spam and generates redirects to other (likely unreliable/hazardous) sites. Most visitors access pages like bator
Albiriox is a sophisticated Android-specific RAT (Remote Access Trojan) with extensive banking trojan capabilities. Its target list covers over 400 banks and financial services. This malware first emerged in September 2025 and was subsequently offered as MaaS (Malware-as-a-Service) a month later.
Our review of the "MetaMask 2FA Activation" email revealed that it is fake. This spam message informs recipients that they must enable 2FA on their cryptowallets. This spam campaign is not associated with the actual MetaMask. The purpose of this scam is to steal victims' digital wallets. T
We have examined the website and concluded that it uses a scare tactic (displays a fake warning) to trick visitors into performing certain actions. Typically, scam websites like this one are used to steal information or money, distribute malware, or serve other malicious purposes. It is highly adv
After inspecting this "Roundcube Pending Messages" email, we determined that it is fake. It is a phishing scam targeting email account log-in credentials (passwords) by claiming that multiple messages failed to reach the inbox. The spam email with the subject "Urgent message 11/17/2025 4:2
Our analysis of the email has shown that it contains a deceptive message with a link to a fake website. The email is disguised as an important security update to trick recipients into revealing personal information. The ultimate goal is to steal cryptocurrency. Recipients should ignore this email.
Our team has examined news-hudusa[.]cc and discovered that it uses clickbait to obtain permission to show notifications. If users agree to receive those notifications, they can be exposed to various online threats (e.g., scams and malware). Thus, news-hudusa[.]cc should not be trusted. New
We have inspected the email and discovered that it is a phishing attempt disguised as a message from an email service provider. The purpose of this fraudulent email is to trick recipients into opening a fake site and providing personal information. Scammers behind it aim to hijack personal account
Our examination of the email has shown that it is a phishing attempt. The message is designed to appear as a security notification from an email service provider. The scammers behind it seek to deceive recipients into sharing personal information on a fake web page. This email should be ignored to