Our researchers discovered this "BlockchainDeFi" scam during a routine investigation of deceptive websites. This fraudulent webpage claims to be capable of syncing various cryptocurrency wallets to a secure dApp server. Instead of providing any of the promised services, "BlockchainDeFi" operates a
Noodlophile is the name of a stealer-type malware. It operates by extracting and exfiltrating sensitive information from infected devices and installed applications. Evidence suggests that the developer of this stealer is a Vietnamese-speaker. Noodlophile has been observed being offered for sale
Our analysis of the email has shown that it is a scam. In this email, the scammer pretends to be a Swiss collector to trick recipients into disclosing personal information and possibly transferring money. Such scam emails should be ignored to avoid issues like identity theft and monetary loss.
We have inspected dualchooner[.]com and found that it is one of the web pages that present misleading instructions to trick visitors into permitting them to show notifications. After obtaining this permission, dualchooner[.]com can send fake warnings and other messages to devices to promote other
Chihuahua is a .NET-based information stealer collects browser data and extracts information from cryptocurrency wallet extensions. Once the data is harvested, it is transferred to cybercriminals. This malware can cause various issues to victims, including monetary loss and identity theft.
Our researchers discovered the northrtbads[.]top rogue page while investigating dubious websites. This webpage operates by promoting browser notification spam and redirecting visitors to other (likely unreliable/hazardous) sites. Northrtbads[.]top and similar pages are mainly accessed through redi
Our researchers found the diversorks.co[.]in rogue page while investigating dubious websites. This webpage is designed to promote browser notification spam and redirect users to other (likely unreliable/hazardous) sites. Most visitors to diversorks.co[.]in and analogous websites access them via re
Our analysis of the page (agix-finance[.]com) has shown that it mimics the original SingularityNET platform (singularitynet.io). The fake site includes a malicious tool designed to steal cryptocurrency from victims. Thus, users should avoid visiting this page and always examine crypto-related webs
Our investigation into saillatinhos[.]com reveals that it is a misleading site designed to trick users into allowing it to show notifications. This permissions is then misused to deliver misleading content and direct users to untrustworthy websites. For this reason, it is strongly advised not to p
We have inspected shiftnetzone.co[.]in and discovered that it uses clickbait to trick visitors into accepting its notifications. If permission is granted, shiftnetzone.co[.]in can show deceptive notifications to promote other questionable and potentially malicious websites. Thus, users should avoi