Our analysis of the site (app.gas-back[.]xyz) determined that it is a scam website masquerading as a legitimate platform. The site's design and content are crafted to appear legitimate, enticing visitors with promises of compensation in digital currency. However, the true purpose of app.gas-back[.
After inspecting the "AVIATOR AIRDROP", we determined that it is a scam. This AVI token giveaway is supposedly run on the official AVIATOR platform (aviator.ac). When users attempt to participate in this airdrop, they are asked to connect their digital wallets. Once "connected", the scam begins op
"ChainGPT DAPP" is a scam that mimics the ChainGPT platform (chaingpt.org). This scheme operates as a cryptocurrency drainer; when users link their digital wallets – it begins siphoning funds from them. The scam impersonates ChainGPT – an AI (Artificial Intelligence) model that implements
Upon inspection, we determined that this "NexAI Migrate" platform is fake. The scam is presented as a trading system. Users lured into interacting with this fraudulent platform expose their cryptowallets to a cryptocurrency drainer. This scam claims to be "NexAI x AI-WAY - LTF Trading Syst
AI Tab Optimizer Plus is a malicious browser extension endorsed as an AI-based tab optimization tool. Instead, this rogue software spies on users' browsing activity and collects sensitive data. AI Tab Optimizer Plus had been an operational extension titled "Tabs To The Front" that was sold by its
Upon reviewing the email, it was observed to impersonate a notification regarding the purchase of genuine security software. The scammers responsible for this email intend to obtain sensitive information and (or) extort money from unsuspecting recipients. Such emails fall under the category of phi
SoumniBot is an Android-specific malware. It utilizes sophisticated anti-analysis and anti-detection techniques. This malicious program is designed to exfiltrate sensitive data from devices, with a particular focus on banking-related information. SoumniBot has been observed being leveraged in atta
During our examination of the website, we discovered a scam operation hosted on it. This scam is crafted to deceive visitors by presenting them with what appears to be a safety warning from a reputable security company. Such warnings are designed to instill a sense of urgency and fear, coercing vi
ClipWallet is a clipper-type malware that targets multiple operating systems, including macOS, Windows, and Linux/Unix. This malicious program is written in the Go programming language. ClipWallet is designed to reroute outgoing cryptocurrency transactions by replacing digital wallet addresses.
Our research team discovered the "Page-error.com official extension" while investigating a Torrenting site that utilizes rogue advertising networks. This software is endorsed as a tool for solving web errors and providing alternatives when a sought website is down. However, the rogue browser exte