Our researchers discovered this fake "Hyperlane Registration" website (registrations-hyperlane[.]app) during a routine investigative session. Upon examination, we determined that this scam imitates the Hyperlane platform. Users who are lured into connecting their digital wallets to the fraudulent
After examining the "Webmail - Email Version Upgrade" message, we determined that it is spam. The phishing letter claims that a new email version has been released, and by attempting to upgrade theirs – recipients expose their account log-in credentials to scammers. This spam email announc
Our team has inspected this email and concluded that it is a phishing email masquerading as a request for a quotation from Carlsberg. Usually, scammers behind emails of this type seek to obtain personal information or extract money from recipients. Either way, this and similar emails should be ign
We have analyzed the site (claim-nemosum[.]io) and concluded that it is a scam website mimicking the original page, nemosum[.]io. Scammers created the fake site to steal cryptocurrency from unsuspecting users. Therefore, it is important to be aware of this and similar sites to avoid potential fina
ToxicPanda is a banking Trojan targeting Android users. Its main function is to initiate money transfers from hacked devices through account takeover (ATO) using a method called On-Device Fraud (ODF). Some of the commands available in ToxicPanda are not fully functioning, as the malware is still i
Our research team discovered the mairozisha[.]com rogue page while browsing deceptive websites. Upon inspection, we determined that this webpage promotes browser notification spam and redirects visitors to other (likely untrustworthy/harmful) sites. Most users access mairozisha[.]com and similar
In our analysis of treasury-helium[.]com, we found it to be a fraudulent website posing as the original one (helium[.]com). This deceptive page is designed to trick visitors into believing that they can claim rewards. The scammers behind it likely aim to steal personal information and crypto holdi
Initiatenewestextremelythe-file[.]top is a rogue webpage discovered by our researchers during a routine inspection of untrustworthy sites. Upon examination, we learned that this page promotes browser notification spam and generates redirects to different (likely unreliable/hazardous) websites. Us
Our team has inspected the email and learned that its purpose is to trick recipients into believing that there is a certain problem with their email account. This email is disguised as a notification from an email service provider. The scammers behind it seek to steal personal information from rec
XAVIER ERA is information-stealing malware designed to extract sensitive data from web browsers and other applications. This malware poses significant risks to user privacy and security. Thus, victims should eliminate it from affected systems as soon as possible to avoid identity theft, monetary l