After reviewing this "AMERICAN EXPRESS card has been temporarily flagged" email, we determined that it is fake. This spam campaign aims to steal recipients' bank accounts by claiming that their cards have been locked due to security reasons. It must be emphasized that the information in the email
While examininig cramlexad[.]com, we discovered that it aims to lure visitors into agreeing to receive its notifications. This page uses clickbait to achieve its goal. It is worth noting that users rarely visit sites like cramlexad[.]com on purpose. If encountered, web pages of this type should be
During our analysis of the page (allocation.thetasnetworks[.]net), we found that it is a scam web page imitating the official Theta Network site, thetatoken[.]org. Scammers use the fraudulent page to steal cryptocurrency from unsuspecting individuals. Thus, it should not be trusted and should be a
While analyzing the site (claim-nesara.pages[.]dev), we discovered that it is a fraudulent web page offering individuals to claim a Nesara Gesara payout. Following instructions on this site can lead to financial losses, as the scammers behind it seek to steal cryptocurrency from individuals. Thus,
After examining the "You Have Received A File" email, we determined that it is spam. This message lures recipients with a false claim concerning a sent file. By trusting the email, users are deceived into disclosing their account log-in credentials (passwords) to a phishing website. The sp
KcozApp is a PUA (Potentially Unwanted Application) discovered by our researchers while analyzing a rogue installer. The installation setup was found promoted by a deceptive site. It also contained other suspicious software, aside from KcozApp. PUAs usually possess harmful capabilities, thus havin
While investigating dubious websites, our researchers discovered several pages promoting the "ROBOTAXI ($TAXI)" scam coin. Purchasing this token is a worthless investment. It is possible that this coin was created to leverage user interest in the recently announced Tesla Cybercab. IMPORTANT
During a routine investigative session, our researchers discovered a fake "Puffer Airdrop" on app-pufferfi[.]co (keep in mind that the scam could be hosted on other domains). The scheme impersonates the Puffer Finance platform (puffer.fi) but is in no way associated with it or any other existing
We have analyzed the website (dappsy.pages[.]dev) and found that it is a fraudulent site mimicking the OpenSeaPro platform (a legitimate token marketplace). This site is controlled by scammers who seek to trick unsuspecting individuals into taking actions that allow scammers to steal cryptocurrenc
SilentCryptoMiner is a piece of malware capable of mining and stealing cryptocurrency. Also, the malware has remote control functionality. In addition to these functionalities, the malware has configuration and stealth capabilities. Victims should eliminate SilentCryptoMiner from computers as soon