Kasper is ransomware, which we discovered while examining malware samples submitted to VirusTotal. Our analysis has shown that Kasper encrypts files, modifies filenames of the encrypted files, and generates a ransom note ("README kasper.txt"). It appends kasperskyrans@gmail.com email address, the
This fraudulent scheme is presented on a fake website posing as a legitimate Bitcoin airdrop launched by Binance. The scammers behind it aim to steal both personal information and cryptocurrency from unsuspecting individuals. Therefore, this and similar schemes should be recognized as scams and av
We have examined the platform (register-bookofeth[.]xyz) and found that it is a fraudulent page mimicking the real one (bookofeth.xyz). On the fake site, visitors are offered to claim cryptocurrency. However, the site's true intention is to lure individuals into taking action that could result in
Muck is an information-stealing malware primarily designed to extract sensitive data from infected devices, focusing on web browser data. This malware can cause victims serious privacy and security issues. Therefore, it should be eliminated from infected computers as soon as possible. Info
While investigating suspicious websites, our researchers discovered this fake "$VANA Airdrop" on signup-vana[.]com (but it could be hosted elsewhere). Users who register can supposedly take part in a token airdrop – instead, they expose their digital wallets to a cryptocurrency drainer. It must b
Upon examination, we determined that the "Cloudflare - Important Account Update" email is spam. It warns the recipient of the impending suspension of their Cloudflare account. The goal is to deceive victims into disclosing their account log-in credentials to a phishing website. It must be stresse
Our researchers discovered this fake "Hyperlane Registration" website (registrations-hyperlane[.]app) during a routine investigative session. Upon examination, we determined that this scam imitates the Hyperlane platform. Users who are lured into connecting their digital wallets to the fraudulent
After examining the "Webmail - Email Version Upgrade" message, we determined that it is spam. The phishing letter claims that a new email version has been released, and by attempting to upgrade theirs – recipients expose their account log-in credentials to scammers. This spam email announc
Our team has inspected this email and concluded that it is a phishing email masquerading as a request for a quotation from Carlsberg. Usually, scammers behind emails of this type seek to obtain personal information or extract money from recipients. Either way, this and similar emails should be ign
We have analyzed the site (claim-nemosum[.]io) and concluded that it is a scam website mimicking the original page, nemosum[.]io. Scammers created the fake site to steal cryptocurrency from unsuspecting users. Therefore, it is important to be aware of this and similar sites to avoid potential fina