After inspecting this email, we determined that it is spam. These letters operate as sextortion scams. They make false claims about the recipients' devices being infected with malware and subsequently used to obtain compromising recordings. The fake emails demand payment under threat of the conten
During our examination of dubious websites, our researchers discovered proposal-stacks[.]co, a page imitating the official Stacks platform. It promotes a fake voting rewards program, claiming participants who vote will receive a bonus $STX allocation upon launch. In reality, this site is a cryptoc
We have examined this email and determined it is a scam. The message is crafted to look like an official billing notification from Intuit QuickBooks, falsely claiming that a subscription payment could not be processed. The goal is to pressure recipients into calling a fraudulent phone number, wher
Evolution is a Go-based information-stealing malware that collects sensitive data from a wide range of applications and accounts, including web browsers, VPN clients, and gaming accounts. The malware is used to harvest information that can be misused for unauthorized access or resale. Victims may
Our team has reviewed the email and determined that it is a phishing attempt. It is written by scammers who seek to steal personal information. The goal is to trick recipients into opening a fake website and entering the requested details. Victims of this scam may lose access to personal accounts
We have examined the message and found that cybercriminals are using it to trick recipients into infecting their devices. It is disguised as a "social security statement update" to appear legitimate. This fraudulent email should be ignored to avoid problems like financial loss and identity theft.
During our inspection of malware samples uploaded to VirusTotal, we discovered LQTOREQ, which is ransomware designed to encrypt files. Also, LQTOREQ appends the ".lqtoreq" extension to files. For instance, it renames "1.jpg" to "1.jpg.lqtoreq", "2.png" to "2.png.lqtoreq", and so on. Additionally,
We have analyzed the message and concluded that it is a phishing attempt. It is disguised as a notification from the email service provider. The purpose of this message is to trick recipients into believing that they have to follow the provided instructions to fix the issue that has supposedly occ
A0Backdoor is a backdoor malware delivered using a malicious DLL sideloading technique. The malware includes anti-sandbox features to evade detection and communicates via a hidden DNS-based command-and-control channel. Having a device infected with A0Backdoor can lead to further infections and ser
EtherRAT is a remote access Trojan (RAT) that gives attackers remote control over infected devices. It was first discovered in late 2025 and has been used in advanced attacks targeting both Linux and Windows systems. It is known that EtherRAT is now delivered through a fake installer that looks li