Malwarebytes researcher Stefan Dasic analyzed a phishing campaign targeting Chrome browser extension developers. The site at dmca-chrome-extensions[.]click impersonates the Chrome Web Store Developer Policy Center and uses a fake Google sign-in overlay to steal the victim's account credentials. Go
After examining this email, we determined it is a phishing scam. The message poses as an alert from an entity called "Email Services," falsely claiming the recipient's account has deliverability problems that require immediate attention. Its purpose is to direct victims to a fraudulent website and
After inspecting this email, we determined that it is a scam. The message is designed to appear as an automated alert from a webmail service, claiming that some incoming messages have been placed on hold. It is a phishing email intended to trick recipients into entering their email account credent
After examining this email, we determined that it is a phishing scam. The message is disguised as an official alert from cPanel, falsely claiming that the recipient's server IP address has been blacklisted and that email delivery is at risk. It is designed to trick recipients into clicking a link
We have examined this email and determined it is a phishing scam. It impersonates an automated notification from the recipient's own email delivery system, falsely claiming that outgoing messages are not reaching their destination. The goal is to trick recipients into entering their email login cr
We have examined this email and determined it is a phishing scam. The message is disguised as a payment notification from Standard Chartered Bank and claims that a SWIFT payment advice document is attached. When the HTML file attachment is opened, it displays a fake login page designed to harvest
Our researchers discovered the Trusted Study browser hijacker while inspecting a rogue browser extension. Once added, it changes browser settings to promote trustedstudysearch.com - a fake search engine. This extension also poses a privacy risk, as software in this category typically monitors brow
Our team examined this email and determined it is malspam. The message impersonates a representative of the Missionary Sisters of St Peter Claver Rome, claiming that a wire transfer was returned due to incorrect account details. It carries a PDF attachment containing a link that downloads malware.
After examining this email, we determined it is a phishing scam. It is disguised as a routine business communication requesting a purchase order review, but clicking the provided link leads to a fraudulent Microsoft login page. The goal is to steal the recipient's email credentials. This email sho
After examining this email, we determined it is a phishing scam. The message is disguised as a payment notification urging the recipient to download financial documents via a link. That link leads to a fraudulent site designed to steal email account credentials. This email should be ignored.