"ChainGPT DAPP" is a scam that mimics the ChainGPT platform (chaingpt.org). This scheme operates as a cryptocurrency drainer; when users link their digital wallets – it begins siphoning funds from them. The scam impersonates ChainGPT – an AI (Artificial Intelligence) model that implements
Upon inspection, we determined that this "NexAI Migrate" platform is fake. The scam is presented as a trading system. Users lured into interacting with this fraudulent platform expose their cryptowallets to a cryptocurrency drainer. This scam claims to be "NexAI x AI-WAY - LTF Trading Syst
AI Tab Optimizer Plus is a malicious browser extension endorsed as an AI-based tab optimization tool. Instead, this rogue software spies on users' browsing activity and collects sensitive data. AI Tab Optimizer Plus had been an operational extension titled "Tabs To The Front" that was sold by its
Upon reviewing the email, it was observed to impersonate a notification regarding the purchase of genuine security software. The scammers responsible for this email intend to obtain sensitive information and (or) extort money from unsuspecting recipients. Such emails fall under the category of phi
SoumniBot is an Android-specific malware. It utilizes sophisticated anti-analysis and anti-detection techniques. This malicious program is designed to exfiltrate sensitive data from devices, with a particular focus on banking-related information. SoumniBot has been observed being leveraged in atta
During our examination of the website, we discovered a scam operation hosted on it. This scam is crafted to deceive visitors by presenting them with what appears to be a safety warning from a reputable security company. Such warnings are designed to instill a sense of urgency and fear, coercing vi
ClipWallet is a clipper-type malware that targets multiple operating systems, including macOS, Windows, and Linux/Unix. This malicious program is written in the Go programming language. ClipWallet is designed to reroute outgoing cryptocurrency transactions by replacing digital wallet addresses.
Our research team discovered the "Page-error.com official extension" while investigating a Torrenting site that utilizes rogue advertising networks. This software is endorsed as a tool for solving web errors and providing alternatives when a sought website is down. However, the rogue browser exte
During our inspection of the MagnaEngine browser extension, we found that it operates as a browser hijacker. This extension hijacks a browser by changing its settings. The purpose of MagnaEngine is to promote a fake search engine. Also, MagnaEngine enables the "Managed by your organization" featur
While inspecting new submissions to the VirusTotal platform, our research team discovered a malicious program named IRIS. It is based on the Chaos ransomware. IRIS encrypts files and demands payment for their decryption. On our testing system, this ransomware locked files and appended their filen