Our researchers discovered the adscloudpulse[.]top rogue page while inspecting untrustworthy websites. After investigating this webpage, we learned that it promotes browser notification spam and generates redirects to different (likely unreliable and/or hazardous) sites. Adscloudpulse[.]top and a
"OpenxAI Staking" is a scam that our researchers discovered during a routine inspection of suspicious websites. This fraudulent page promises a large APR (Annual Percentage Rate) for staking tokens. It is disguised as the OpenxAI Network (openxai.org) yet bears no actual association with this plat
Our analysis shows that Hype is ransomware (which we discovered during inspection of malware samples uploaded to VirusTotal) designed to encrypt files and provide a ransom note ("hype Ransmoware.txt"). It also appends an email address, the victim's ID, and the ".hype" extension to files. For exam
We have inspected the website (claims-hyperwavefi[.]xyz) and concluded that it mimics the official Hyperwave site (app.hyperwavefi.xyz) to trick visitors into participating in a fake giveaway. The ultimate goal is to steal cryptocurrency from victims. Therefore, this page should be avoided.
While investigating suspicious websites, our research team discovered this "Lombard ($BARD) Staking" scam. It impersonates the Lombard Finance platform (lombard.finance) and offers point rewards for staking BARD tokens. The fake page operates as a cryptocurrency drainer – by siphoning funds from e
"Your Account Access Needs Reconfirmation" is a phishing email. It claims that the recipient's email must be reconfirmed as part of the routine account maintenance. This spam campaign aims to lure recipients into entering their account log-in credentials to a phishing website. The spam ema
While browsing suspicious websites, our research team discovered this fake "Zebec Network Rewards" page. It promises rewards to early Zebec platform's native token holders. It must be emphasized that this scam is not associated with the real Zebec platform (zebec.io). "Zebec Network Rewards" opera
SilentSync is a Python-based remote access Trojan (RAT) targeting multiple operating systems. It allows cybercriminals to steal sensitive information and perform other malicious tasks. If detected on a device, SilentSync should be removed using a reliable security tool as soon as possible to avoid
This "Google Voice" webpage is a phishing scam. The page claims the user has received a secure voicemail and lures them into disclosing their Gmail account log-in credentials. It must be stressed that this scam is not associated with any legitimate services or entities. This scam states th
MostereRAT is a remote access Trojan written in Easy Programming Language (EPL). It can be extended with new capabilities, deliver additional payloads, extract sensitive information, and employ evasion techniques. If the system is infected with MostereRAT, a scan using a reliable security tool sho