UNC is ransomware from the Dharma family. Our team has discovered this ransomware during an analysis of malware samples uploaded to VirusTotal. After execution, UNC encrypts files and appends the victim's ID, an email address, and the ".UNC" extension to them. It also displays a ransom note (and c
During our examination of skyeco-vote[.]com, we found that this page impersonates the legitimate Sky.money platform and falsely promotes voting rewards for SKY token holders. The site is, in reality, a cryptocurrency drainer designed to steal digital assets from any visitor who connects a wallet t
After inspecting this email, we determined that it is a phishing scam. The message poses as an urgent notification from the recipient's email service provider, claiming that a system update has been completed and that the recipient's mailbox must be re-confirmed within 24 hours or it will be perma
Our research team identified Elite Enterprise while analyzing new file submissions on VirusTotal. Elite Enterprise is ransomware that encrypts files on compromised machines and demands a ransom for decryption. Unlike most ransomware, it does not append any extension to encrypted files - their name
Our analysis has revealed that news-tiwigo[.]cc is a rogue webpage designed to trick visitors into agreeing to receive browser notifications. It does this by displaying a fake robot verification prompt. If the permission is granted, news-tiwigo[.]cc can deliver fake warnings and other misleading n
Our research team came across news-temodu[.]com while looking into suspicious websites. It turned out to be a rogue page - one that tries to trick visitors into enabling browser notifications by presenting a fake identity verification prompt. If the permission is granted, news-temodu[.]com can sta
Mightytechy.com is a search engine that is spread through browser hijackers and unwanted apps. Its users may encounter various scams and other potentially malicious content. For this reason, mightytechy.com is considered an unreliable search engine. Users should avoid it and remove it, along with
We have inspected the email and concluded that it is a phishing attempt. The message is disguised as a notification from the email provider. However, it includes a link to a fake website designed to steal personal information. Victims of this scam can have their accounts hijacked and encounter fur
Our team reviewed the email and determined that it was created by scammers trying to make recipients believe it came from their email provider. The purpose is to deceive users into entering personal information on a fake website. Emails like this are classified as phishing attempts. They should be
Our team has examined the email and found that it is written by scammers who aim to trick recipients into believing that they have received a notification from their email provider. Their goal is to steal personal information via a deceptive site. Such emails are classified as phishing attempts.