While investigating dubious sites, our researchers discovered the page at dao-ethena[.]fi. It impersonates the legitimate Ethena platform (ethena.fi) and promotes a fake "Season 7 Rewards" voting program. This site operates as a cryptocurrency drainer designed to steal digital assets from anyone w
Qv is ransomware discovered by our researchers during a routine inspection of new submissions to the VirusTotal website. It encrypts victims' files, appends a complex extension to each filename, and drops a ransom note demanding payment for decryption. On our test machine, Qv encrypted files and
Ad Blocker Unlimited is promoted as a free, lightweight tool that hides banner ads, video ads, pop-ups, and overlays on the websites you visit. However, during our inspection, we determined that this extension has the qualities of adware. Instead of reliably blocking ads, it can display them. Use
During a routine investigation, our researchers discovered the Easy Search browser hijacker. This extension changes browser settings to promote easysearching.net, a fake search engine. It is advisable to avoid using it and remove it from any affected browser. Once Easy Search is added to a
Easy Online Templates is promoted as a convenient tool for finding and downloading professional templates - including calendars, flyers, resumes, and presentations. However, our inspection revealed that this extension displays advertisements. Our team classified it as adware. Once added to a brow
After examining this email, we determined it is a phishing scam. The message impersonates a generic email service provider and falsely claims the recipient's mailbox requires immediate policy acknowledgment to avoid suspension. Its goal is to steal email login credentials from unsuspecting recipie
The "FIFA 2026 World Cup Scams" refers to a coordinated wave of fraudulent websites that impersonate FIFA and its official partners to defraud football fans. The FBI and the Internet Crime Complaint Center (IC3) have warned the public about this campaign, which exploits the global excitement surro
We have examined this email and determined that it is a phishing scam. The message is disguised as a fraud alert from Capital One, falsely claiming the recipient's card has been locked. It is designed to direct victims to a fake website where their banking credentials can be stolen. This email sho
We have examined this email and concluded that it is a scam. The message is designed to appear as an urgent notification from a cloud storage provider, falsely claiming that the recipient's subscription has been paused and their data is at risk of deletion. It should be ignored to avoid being misl
We have inspected this email and determined it is malspam. It impersonates FedEx to trick recipients into opening a malicious Excel spreadsheet. The purpose of this fraudulent message is to deliver malware onto the victim's computer. It should be ignored and deleted without opening the attachment.