Our researchers found iwheenaiga[.]com while browsing untrustworthy websites. After inspecting this rogue webpage, we determined that it promotes browser notification spam and redirects users to other (likely dubious/malicious) sites. The majority of visitors to iwheenaiga[.]com and pages akin to
This fake crypto exchange platform imitates the legitimate Hyperliquid trading platform. The scam website we investigated perfectly mimicked Hyperliquid's design. However, the fraudulent webpage lacked functionality besides the "connect wallet" option. When users "connect" their digital wallets to
Our researchers discovered the Rincrypt ransomware while examining new submissions to the VirusTotal website. After we executed a sample of Rincrypt on our testing system, it encrypted files and appended their filenames with a ".rincrypt" extension. For example, a file originally titled "1.jpg" a
During our inspection, we found that bestrecgetpreview[.]com is a deceptive website designed to display deceptive content to lure visitors into taking certain actions. Also, bestrecgetpreview[.]com may redirect users to other unreliable sites. Thus, bestrecgetpreview[.]com should be avoided.
This "Mode Sunrise Airdrop" is fake. The giveaway supposedly distributes the Mode cryptocurrency. However, when a user attempts to participate in this airdrop, they inadvertently expose their digital wallet to a crypto drainer that can empty it of stored assets. Several domains have been o
Upon inspection, we determined that the "WeTransfer - You Have Received Files" email is spam. This phishing letter targets email account log-in credentials by claiming that the recipient was sent a file via a legitimate file transfer service. It must be emphasized that this scam mail is not assoc
While browsing submissions to the VirusTotal platform, our researchers discovered a ransomware named 777. This malicious program is part of the GlobeImposter ransomware family. We acquired a sample of 777 (GlobeImposter) ransomware from VirusTotal and executed it on our test machine. The malware
Our analysis of carenotifsolution[.]xyz determined that it is an unreliable website promoting a legitimate software product. Also, carenotifsolution[.]xyz asks for permission to send notifications that are misleading. Thus, users should avoid visiting carenotifsolution[.]xyz or allow it to show no
After carefully examining the email, we have determined that it is a fraudulent message crafted to entice unsuspecting recipients into accessing a deceptive website. These scammers use the website to pilfer personal information. Such deceptive emails are commonly referred to as phishing emails.
Our research team discovered the PdfKnight PUA (Potentially Unwanted Application) while inspecting suspicious websites. According to the webpage promoting this app, it supposedly operates as a file format converter that can convert PDFs to Doc format documents. Our analysis revealed that PdfKnigh