GodDamn is ransomware discovered by our researchers during a routine inspection of new submissions to the VirusTotal website. It encrypts files and appends a unique victim ID and the .God8Damn extension to their filenames. It also creates a ransom note in a text file named README.TXT. On our test
We have examined this email and concluded that it is a phishing scam. The message is designed to appear as an account alert from an email support service, falsely claiming the recipient's mailbox was restricted due to a server error. It pushes recipients to click a link leading to a fake login pag
We have inspected this email and determined it is a phishing scam. The message falsely claims that a trojan virus was detected on the recipient's email account and directs them to follow steps to secure it. Clicking the provided link leads to a fraudulent page designed to steal email credentials.
While investigating suspicious websites, our team came across ledger-staking.pages[.]dev, a page posing as an official Ledger staking platform. It promises visitors they can stake Ethereum (ETH) and earn passive rewards through the Ledger Live app. In reality, it is a cryptocurrency drainer design
gadgetech.info is a search engine promoted through various browser hijackers and unwanted applications. It does generate its own search results, but those results lean heavily on sponsored advertisements and links to questionable websites. For this reason, gadgetech.info is considered an unreliabl
During our examination of dubious websites, our researchers discovered simplytaoai[.]xyz - a fraudulent page that impersonates the legitimate SimplyTao platform (simplytao.ai). The fake site promotes a fabricated "$STAO Snapshot" event and prompts visitors to connect their cryptocurrency wallets.
We have inspected this email and determined that it is a phishing scam. The message is disguised as an official notification from DocuSign, a widely used electronic signature service, claiming that a document has been sent to the recipient and requires their review and signature. Clicking the link
We have inspected this email and found that it is a phishing scam. While it poses as a security alert from Bank of America, the link it contains leads to a fraudulent page intended to steal email account credentials rather than banking details. Recipients should ignore and delete the email to avoi
During our examination of claim.avantishub[.]org, we found that this page promotes a fake "$AVNT Token Airdrop 2" campaign. The site is designed to deceive visitors into connecting their cryptocurrency wallets, which triggers a drainer that transfers their funds to the attackers. IMPORTANT N
We have examined this email and concluded that it is a phishing message disguised as a payment approval notification from American Express. The email tries to push recipients toward a fake American Express login page where the entered credentials are harvested by scammers. This email should be ign