NotLockBit is ransomware masquerading as the LockBit ransomware. It targets both Windows and Mac users. NotLockBit is capable of both encrypting and exfiltrating (stealing) files. Also, this ransomware changes the victim's desktop. In addition to encrypting files, NotLockBit renames them. It rena
Multiverze is a piece of malicious software targeting Mac operating systems (macOS). This malware aims to steal sensitive information from victims' devices. Multiverze has been noted being proliferated using social engineering tactics, specifically – through social media spam. Multiverze
We have inspected the "OpenSea NFT Offer" website (connect-web3[.]dev) and found that it is a scam masquerading as the legitimate OpenSea platform. It is created to trick individuals into taking actions that could lead to significant financial losses. Users should avoid sites like connect-web3[.]d
During our analysis of the page, we discovered that it mimicks the original site, veda[.]tech to deceive individuals. The purpose of this fraudulent web page is to lure visitors into performing steps that could result in monetary losses. Therefore, it is highly advisable to be careful when encount
Our research team found the altaipeak[.]top rogue page while browsing untrustworthy websites. After examining this webpage, we determined that it promotes browser notification spam and redirects users to different (likely unreliable/hazardous) sites. Visitors to altaipeak[.]top and similar pages
PowerRAT is a piece of malicious software categorized as a RAT (Remote Access Trojan). These trojans are designed to allow attackers remote access and control over compromised machines. RATs tend to be multi-functional and highly versatile. PowerRAT malware has been observed being proliferated vi
Our researchers found the EssentialSector rogue application while inspecting new submissions to VirusTotal. After examining this piece of software, we learned that it is adware from the AdLoad malware family. EssentialSector operates by feeding users with undesirable and possibly malicious ads.
Upon inspecting "Security Token For Business Email Is Outdated", we determined that this email is spam. It claims that the recipient risks having their business email deleted from the servers unless the security token is updated. This information is false, and the scam mail is not associated with
Our researchers discovered the "Microsoft Windows Locked Due To Unusual Activity" technical support scam while investigating suspicious websites. This scheme masquerades as Microsoft's website warning visitors of system infections. The goal is to deceive victims into calling the fake support line
Our team has analyzed this email and learned that it is deceptive. It is disguised as a notification from an organization regarding employment benefits. Scammers behind this email seek to steal personal information from recipients. Such emails are known as phishing attempts, and recipients should