After inspecting this "Transaction Intermediary" email, we determined that it is spam. This message is presented as a partnership proposal, wherein the recipient is offered to serve as an intermediary in the sender's financial affairs. The likely goal of this spam campaign is to obtain private dat
Asur is a Remote Access Trojan (RAT) targeting Android OSes (Operating Systems). Malware within this classification is designed to enable remote access/control over infected devices. As of the time of writing, Asur is under active development and currently boasts SMS management abilities and geolo
Our researchers discovered culactocan.co[.]in while investigating suspect websites. This rogue page promotes browser notification spam and redirects users to different (likely untrustworthy/hazardous) sites. The majority of visitors to culactocan.co[.]in and analogous webpages access them through
We have inspected forprate.co[.]in and concluded that it uses a misleading method (clickbait) to lure visitors into accepting its notifications. If allowed, forprate.co[.]in can deliver fake alerts and similar messages to trick users into opening untrustworthy websites. Thus, forprate.co[.]in shou
Our inspection of the "Tax Invoice And Contract Document Via WeTransfer" email revealed that it is spam. Presented as a notification concerning the reception of important finance-related files, this message lures recipients into a phishing website that targets email account log-in credentials. It
We have reviewed the email and discovered that it was created by scammers aiming to deceive recipients into disclosing personal information or paying for fraudulent services. The message pretends to be from representatives of the United Nations/World Bank to appear genuine. It should be ignored to
After reading this "Capital Fund International" email, we determined that it is spam. The message is a business offer of sorts, wherein the recipient's company can take out a large loan or receive funding from the sender. This is a scam that likely targets sensitive information or aims to trick vi
We have analyzed the message and concluded that it is a phishing email posing as a security notification from the Bank of America. Fraudsters behind this scam email attempt to lure recipients into visiting a fake web page and entering personal details. Recipients are strongly advised not to trust
Our team has inspected vso-protect.co[.]in and found that this page is designed to deceive visitors into agreeing to receive its notifications. Web pages like vso-protect.co[.]in should never be permitted to show notifications, as their notifications can promote potentially malicious pages and app
PLU is ransomware that our team discovered while checking samples recently uploaded to the VirusTotal platform. Upon infiltration, PLU encrypts files and changes their filenames. It also drops a ransom note ("IMPORTANT.txt") and changes the desktop wallpaper. An example of how PLU renames files: