While inspecting new submissions to the VirusTotal platform, our researchers discovered the DataUpdate app. After analyzing it, we determined that this application is adware (advertising-supported software). DataUpdate is part of the AdLoad malware family. Adware is designed to generate
We have inspected the 21-brett[.]com web page and found that it hosts a scam posing as a cryptocurrency airdrop held by the real Brett website (brett[.]fyi). Scammers behind the fake page aim to trick individuals into believing that they can participate in a cryptocurrency giveaway. However, victi
Cuckoo is a Mac-specific malware that operates as spyware and an information-stealer. It can record information and extract data from various browsers, cryptocurrency wallets, FTP clients, messengers, and other apps. The Cuckoo malicious program has been around since at least the spring of 2024
The Ledger wallet stealer is a malicious tool discovered by S!Ri. This malware masquerades as the official Ledger Live tool, a piece of software allowing users to set up their devices and manage their crypto assets. Users should remove this wallet stealer from infected devices as soon as possible
After inspecting "Claim Your Merlin Chain ($MERL) Token", as hosted on merlinrewards[.]xyz, we determined that it is fake. This scheme impersonates the Merlin Chain platform (merlinchain.io). The imitator supposedly runs an airdrop, trying to participate in it – exposes digital wallets to a crypto
During our examination of the app, we observed that it delivers annoying and unwanted advertisements. For this reason, we have classified PartitionActivity as adware. Typically, users are tricked into installing apps like PartitionActivity (they often do so without being aware that these apps sh
We inspected this site (crypdrops[.]io) and found that it promotes cryptocurrency airdrops (giveaways). However, it is a scam. The page is created by scammers with the intention of stealing cryptocurrency from unsuspecting users. Thus, crypdrops[.]io should not be trusted. IMPORTANT NOTE: We
Our analysis of the app revealed that it displays unwanted advertisements. Thus, we classified OfflineFiberOptic as adware. Pretty often, users install adware unknowingly. It is also important to mention that software of this type can be designed to gather various information. Therefore, users s
We have examined the page (qr2ws.airdrop-ton[.]homes) and found that it masquerades as the real website (ton[.]org) to lure unsuspecting individuals into participating in a fraudulent scheme. This fake page is disguised as a website hosting a cryptocurrency giveaway. Its purpose is to steal crypto
FunctionNetwork is a rogue app discovered by our researchers during a routine investigation of new file submissions to the VirusTotal website. Upon inspection, we determined that FunctionNetwork is adware from the AdLoad malware family. It operates by generating revenue for its developers throug