In the course of our inspection of malware samples submitted to VirusTotal, we came across a ransomware variant dubbed Lethal Lock. This ransomware encrypts files and appends its extension to filenames (".LethalLock"). Also, Lethal Lock generates a ransom note ("SOLUTION_NOTE.txt") and changes the
During our examination of the My Horoscope Pro application, we discovered that it changes the settings of a web browser to promote a specific address. Our analysis concluded that My Horoscope Pro is an unreliable browser extension that operates as a browser hijacker. Users should avoid adding apps
While examining the mail, we discovered it to be a phishing email, a fraudulent attempt to extract personal information from recipients. This letter is disguised as a notification from Netflix regarding the recipient's Netflix account. Anyone who receives this letter should disregard it. T
Upon reviewing the website, it became evident that it portrays itself as a credible platform for acquiring cryptocurrency. Yet, our investigation revealed its fraudulent nature, designed to deceive unsuspecting users into undertaking actions that result in financial losses, such as the theft of th
"Zora Mint scam" refers to fake websites that imitate Zora (zora.co). These fraudulent pages entice users into exposing their digital wallets by offering NFT (Non-Fungible Token) minting (i.e., creating) opportunities. This scam operates as a cryptocurrency drainer. This scam impersonates
While inspecting a Torrenting website that uses rogue advertising networks, our researchers discovered a deceptive page endorsing the Page Summarizer AI browser extension. Our research team also found its promotional webpage, wherein the extension is promoted as an AI-powered tool for summarizing
After inspecting this "FOXY Presale", we determined that it is a scam. It is presented as a presale event for FOXY – a legitimate cryptocurrency. However, when users try to participate, they trigger a crypto drainer. The scope of the financial loss faced by victims depends on the value of the stol
"ATOR Reward Program" is a scam that is disguised as the ATOR platform. The bait used to lure victims is a promise of a rewards program for ATOR cryptocurrency holders. The scheme functions as a crypto drainer that steals the funds from exposed digital wallets. This scam is presented as a
profilingTime is promoted as a browser extension that assists users by guiding them to live websites. However, our examination of the application revealed that it displays unwanted and intrusive advertisements. Thus, we classified profilingTime as adware. Users are advised not to have such apps in
Upon further examination of the website, it became evident that it is a fraudulent site impersonating the official Seedify (seedify[.]fund) page. The perpetrators behind this deceptive webpage aim to entice unsuspecting individuals into taking actions that enable them to steal cryptocurrency. Cons