Brokewell is a banking malware with spyware and RAT (Remote Access Trojan) capabilities. This malicious program targets Android operating systems. As is indicated by its classification, Brokewell seeks banking-related information. At the time of writing, the malware is in active development and is
We inspected yourshields24[.]club and found that it is designed to lure visitors into agreeing to receive its notifications. To achieve this, yourshields24[.]club uses clickbait (it displays deceptive content). Additionally, yourshields24[.]club redirects visitors to similar pages. Thus, this site
"$LOC PRE-SALE" is a scam that supposedly runs a presale event for the LOC cryptocurrency. It operates as a crypto drainer that steals funds from exposed digital wallets. It must be mentioned that scams of this kind are often disguised as existing platforms, yet this does not mean that they are as
In the course of our inspection of likudservices[.]com, we noticed that this deceptive website uses a clickbait technique to receive permission to show notifications. We have examined lots of similar pages and found that in addition to displaying misleading content, most of them redirect visitors
Myflisblog[.]com is one of the numerous websites that employ clickbait to receive permission to deliver notifications to users. We discovered myflisblog[.]com while inspecting similar websites. Users should not visit myflisblog[.]com, and more importantly, this site should not be allowed to show n
Our analysis of the email has led us to conclude that it is a scam commonly referred to as an advance-fee scam. Typically, scammers behind such schemes aim to trick unsuspecting recipients into transferring their money. They may also ask for personal information. Thus, recipients should not respon
During our examination of the Wormhole malware, we discovered that it operates as ransomware: its purpose is to encrypt files and demand ransom for file decryption. In addition to encrypting files, Wormhole appends its extension (".Wormhole") to filenames and provides a ransom note ("How to recove
We have inspected the fraudulent Ice token distribution site (giveaway-ice[.]io) and found that its purpose is to steal cryptocurrency from unsuspecting individuals. The fake website (giveaway-ice[.]io) masquerades as the real Ice Open Network page (ice[.]io) to trick users into participating in a
Lovelypush[.]club is a rogue page discovered by our researchers during a routine inspection of suspicious websites. Upon examination, we determined that lovelypush[.]club promotes browser notification spam and redirects users to different (likely dubious/malicious) sites. Most visitors to webpage
After examining the "Salary Increase" email, we determined that it is spam. This phishing mail targets email account log-in credentials. The lure used to trick recipients into disclosing this information is a fake document sent by their HR regarding a salary increase. The spam email with t