GoStealer, crafted in the Golang programming language, operates as an information-stealing threat. Once implanted, GoStealer exhibits the ability to covertly extract sensitive data, posing a significant risk to the security and privacy of affected users and organizations. This threat should be rem
Mycommonjournal[.]com is a rogue webpage that our research team discovered during a routine inspection of suspicious sites. It is designed to promote browser notification spam and redirect visitors to other (likely dubious/malicious) websites. Most users access pages like mycommonjournal.com via
This is a scam email masquerading as a notification regarding an iCloud subscription. The scammers behind it seek to deceive recipients by falsely claiming that the renewal of their iCloud storage subscription has encountered issues, leading to the potential deletion of photos and videos. The ulti
While reviewing new submissions to the VirusTotal website, our researchers discovered Fearful.app. Upon inspection, we determined that this application is part of the Pirrit adware family. Fearful.app operates as advertising-supported software (adware). This piece of software runs intrusive adve
After examining the page, we have determined that it is a fraudulent scheme posing as a platform for finding active airdrops. The website pretends to be a legitimate Metamask (cryptocurrency wallet software) page, providing instructions for users to take specific actions to assess their eligibilit
While analyzing malware samples using VirusTotal, we detected a ransomware variant known as Avanzi, which is associated with the Dharma family. Upon successfully infiltrating a computer, Avanzi encrypts files, alters filenames, presents a ransom note, and generates an additional note in the "info.
While scrutinizing the application named ApplicationKey, we found that it operates as adware, delivering intrusive advertisements to users. Additionally, ApplicationKey may have the capability to collect various information. It is important to note that apps like ApplicationKey are frequently di
During our evaluation, we discovered that Clintestwood4playfilms is a questionable application distributed through websites that provide illegal software cracks. The intended use of Clintestwood4playfilms is uncertain as its functionality remains unclear. Nevertheless, it comes bundled with variou
After reviewing the "Mailbox Password Security Update" email, we determined that it is spam. The letter states that there are security issues with the recipient's mailbox. The purpose of this claim is to lure them into entering their log-in credentials into a phishing website. This spam em
This "Jupiter Airdrop" that we investigated is a scam. This airdrop claims to distribute the Jupiter (JUP) cryptocurrency. However, after a victim connects their digital wallet to this platform, it begins working as a crypto drainer and empties the funds. This scheme supposedly distributes