During a routine investigation, our research team discovered the "Mint StoneAi" scam as promoted on new.vedep[.]xyz (note that it could be hosted elsewhere). It lures users into exposing their digital wallets to a crypto drainer by promising an opportunity to mint (generate) StoneAi NFTs (Non-Fung
Voldemort is the name of a backdoor-type malware. It is written in the C programming language. This malicious program has been around since at least the summer of 2024. It is suspected that Voldemort is used in cyber-espionage, potentially by an advanced threat actor. This malware was proliferate
Upon inspection, we determined that the "SunToken Allocation" website (sunpumpswap[.]com) is deceptive. It claims to be distributing digital assets, and when users try to claim them – the cryptowallet connect options include platforms of ill-repute. IMPORTANT NOTE: We do not review crypto pr
Emansrepo is an information stealer that is delivered to potential victims via email. Once infiltrated, it extracts various personal information and sends it to the attackers. Victims of this stealer may suffer financial losses, privacy breaches, and other issues. Emansrepo should be removed from
Our team has inspected this email and concluded that it is a phishing email. Its purpose is to trick recipients into opening a fake website and providing personal information on it. The email is disguised as a notification from an email service provider. Users should ignore such emails. Th
Upon inspection, we determined that the "Exceeding Your Free Data Volume" email is spam. It states that due the the mailbox data volume having been exceeded, the recipient may experience email service interruptions. This phishing mail aims to trick recipients into disclosing their email account lo
During our examination of flisshop[.]club, we found that this page uses a deceptive technique to lure visitors into accepting its notifications. Users often land on websites like flisshop[.]club inadvertently. If encountered, flisshop[.]club should be closed and not permitted to send notifications
Our researchers discovered news-guhore[.]com while browsing dubious websites. After inspecting this rogue page, we determined that it endorses browser notification spam and generates redirects to other (likely unreliable/dangerous) sites. Most visitors enter webpages like news-guhore[.]com via re
News-gexico[.]com is a rogue webpage discovered by our research team during a routine investigation of suspect sites. This page is designed to promote browser notification spam and redirect users to other (likely untrustworthy/harmful) websites. Webpages like news-gexico[.]com are most commonly a
While testing SearchPlus, we noticed that this extension has traits of a browser hijacker. Upon adding SearchPlus to a browser, the extension changes certain settings to promote a fake search engine. Users should avoid SearchPlus and similar extensions. If SearchPlus is already added, it should be