Cyberware is ransomware that we discovered while examining malware samples submitted to VirusTotal. Our analysis has revealed that Cyberware encrypts files and appends the ".CYBER" extension to them. Additionally, the ransomware changes the desktop wallpaper and generates a ransom note ("CyberEven
We have examined the website (lihgter-dex[.]xyz) and found that it mimics the Lighter site, app.lighter.xyz. Fraudsters behind the fake page aim to trick visitors into taking steps that can lead to cryptocurrency theft. It is highly advisable to ensure that a website is is trustworthy before takin
We have reviewed the email and concluded that it is a phishing attempt disguised as a "password expiry reminder". It is designed to appear legitimate and trick recipients into opening a fake website where they are asked to disclose personal information. Victims of this scam can encounter issues su
While examining the website (app-pippin[.]trade), we found that it is made to appear as the original Pippin platform (pippin.love). The fake site has a very similar design to trick visitors into believing that they are on the real page. The scammers behind the deceptive site aim to steal cryptocur
We have reviewed the email and found that it contains a fake notification regarding account security. It is designed to appear legitimate and urgent, and to trick recipients into opening the provided website. The goal is to steal personal information. Emails of this kind are phishing attempts, and
Our team has discovered connect-layer3[.]com is a fake website designed to trick visitors into believing that they are on the real QuickSwap site, dapp.quickswap.exchange. The deceptive page is operated by scammers who seek to steal cryptocurrency from unsuspecting individuals. It is strongly reco
We have inspected search.searchsafe.tech and concluded that it is a fake search engine. Additionally, search.searchsafe.tech is promoted through an extension called Content Site Search Guru, which is classified as a browser hijacker. Using Content Site Search Guru and search.searchsafe.tech can le
Our analysis shows that privacyonlinesearch.com is presented as a search engine, but it does not generate unique results, indicating that it is a fake search engine. Moreover, privacyonlinesearch.com is promoted through an extension classified as a browser hijacker, called Online Privacy.
We have checked claim-espresso[.]app (another associated domain is claim-espressofoundation[.]org) and discovered that it mimics the original Espresso (espressosys.com) page. It is operated by scammers who seek to steal cryptocurrency from unsuspecting individuals. This unofficial and fraudulent p
Our team has examined the email and found that it contains a fake notification regarding a failed system update. Its purpose is to steal personal information through the provided deceptive websites. Such scams are classified as phishing attempts. If received, this scam email should be ignored and