Gratsegrid[.]com is a rogue webpage discovered by our researchers during a routine inspection of suspect sites. Upon examination, we determined that this page endorses spam browser notifications and redirects visitors to other (likely untrustworthy/harmful) websites. Most users enter gratsegrid[.
After reading the "Cargo Shipment" email, we determined that it is spam. The letter is presented as partnership offer for 30% value of goods that need to be shipped. If the recipient agrees, they are to aid with arranging the shipment. This kind of scam mail typically seeks to obtain sensitive in
Vert is a malicious program designed to steal sensitive data from infected systems. Due to this behavior, Vert is classed as a stealer. The malware in question targets log-in credentials, cryptowallets, and extensive information relating to the Discord messaging platform. The Vert stealer
While inspecting new file submissions to VirusTotal, our research team found Alcalde.app. After analyzing this application, we learned that it is adware from the Pirrit malware family. Alcalde.app is designed to generate revenue through advertising. Adware runs intrusive advertisement ca
Stink is a malicious program written in the Python programming language. It is classed as a stealer. This malware is designed to extract and exfiltrate vulnerable information from devices. Stink is a stealer-type malware. Typically, programs within this class target sensitive system inform
Braodo is a Python-based information stealer designed to infiltrate systems and gather various (including sensitive) data for malicious purposes. Typically, cybercriminals use stealers like Braodo for financial gain. Users should remove Braodo from infected systems to avoid financial loss and othe
After inspecting "Email Sending Has Been Temporarily Suspended", we determined that it is spam. This fake letter claims that the recipient's email account was suspended due to suspicious activity. This spam mail aims to trick users into providing their account log-in credentials to a phishing webs
Upon inspection of bimq.co, we concluded that it is a fake search engine promoted via dubious browser extensions. As a rule, apps that promote fake search engines are browser hijackers. These extensions hijack browsers by changing their settings. Overall, it is advisable to remove bimq.co and asso
We have inspected this email and learned that its purpose is to trick recipients into opening a fake website and providing personal information. Emails of this type are classified as phishing emails. The email described in our review below is disguised as a notification from the TFBank an activati
Quest-finder.com is the address of a fake search engine promoted by a browser hijacker called Quest-Finder. Our researchers discovered this rogue browser extension during a routine investigation of deceptive sites. Quest-Finder operates by altering browser settings to generate redirects to the qu