We have examined the platform (register-bookofeth[.]xyz) and found that it is a fraudulent page mimicking the real one (bookofeth.xyz). On the fake site, visitors are offered to claim cryptocurrency. However, the site's true intention is to lure individuals into taking action that could result in
Muck is an information-stealing malware primarily designed to extract sensitive data from infected devices, focusing on web browser data. This malware can cause victims serious privacy and security issues. Therefore, it should be eliminated from infected computers as soon as possible. Info
While investigating suspicious websites, our researchers discovered this fake "$VANA Airdrop" on signup-vana[.]com (but it could be hosted elsewhere). Users who register can supposedly take part in a token airdrop – instead, they expose their digital wallets to a cryptocurrency drainer. It must b
Upon examination, we determined that the "Cloudflare - Important Account Update" email is spam. It warns the recipient of the impending suspension of their Cloudflare account. The goal is to deceive victims into disclosing their account log-in credentials to a phishing website. It must be stresse
Our researchers discovered this fake "Hyperlane Registration" website (registrations-hyperlane[.]app) during a routine investigative session. Upon examination, we determined that this scam imitates the Hyperlane platform. Users who are lured into connecting their digital wallets to the fraudulent
After examining the "Webmail - Email Version Upgrade" message, we determined that it is spam. The phishing letter claims that a new email version has been released, and by attempting to upgrade theirs – recipients expose their account log-in credentials to scammers. This spam email announc
Our team has inspected this email and concluded that it is a phishing email masquerading as a request for a quotation from Carlsberg. Usually, scammers behind emails of this type seek to obtain personal information or extract money from recipients. Either way, this and similar emails should be ign
We have analyzed the site (claim-nemosum[.]io) and concluded that it is a scam website mimicking the original page, nemosum[.]io. Scammers created the fake site to steal cryptocurrency from unsuspecting users. Therefore, it is important to be aware of this and similar sites to avoid potential fina
ToxicPanda is a banking Trojan targeting Android users. Its main function is to initiate money transfers from hacked devices through account takeover (ATO) using a method called On-Device Fraud (ODF). Some of the commands available in ToxicPanda are not fully functioning, as the malware is still i
Our research team discovered the mairozisha[.]com rogue page while browsing deceptive websites. Upon inspection, we determined that this webpage promotes browser notification spam and redirects visitors to other (likely untrustworthy/harmful) sites. Most users access mairozisha[.]com and similar