Our analysis shows that the site (zksync[.]run) is a fraudulent copy of the legitimate ZKsync platform (zksync.io). It is operated by scammers attempting to steal cryptocurrency by misleading users with false promises of token giveaways. This site should be avoided to prevent financial loss.
We have inspected the website (ore.distribution[.]finance) and concluded that it is a clone of the original ORE page (ore.supply). The fraudulent site is managed by scammers who aim to steal cryptocurrency from individuals. Fraudsters promise free tokens as a lure. This page should be avoided to p
We found that acrincelibly.co[.]in is trying to get permission to send notifications. The site employs a misleading tactic (clickbait) to trick visitors into accepting those notifications. Because of this, acrincelibly.co[.]in should not be trusted and should be avoided (and closed if encountered)
Our researchers discovered this Bactor ransomware while browsing new file submissions to the VirusTotal website. Ransomware is a type of malware that encrypts data and demands a ransom for the decryption. On our testing system, Bactor encrypted files and added a ".bactor" extension to their filen
The "Emirates First Class Subscription" scam refers to fake Emirates airline webpages that target personally identifiable and finance-related data. The lure is membership for ten First Class flights at an incredibly low cost. It must be stressed that this phishing scam is not associated with the a
Our examination of the "Interactive Brokers - Renewal of W-8BEN Form Required" email revealed that it is fake. Presented as an "official notification" from Interactive Brokers, this message claims that the recipient must renew their W-8BEN form to comply with US tax regulations. It must be emphas
Our inspection of unperfuncone.co[.]in has shown that the purpose of this web page is to obtain permission to send notifications. However, this site uses a deceptive method to trick visitors into agreeing to get its notifications. Thus, unperfuncone.co[.]in should not be trusted and should be avoi
After inspecting this "Changes In The cPanel Webmail Server" email, we determined that it is fake. This phishing message urges the recipient to verify their email account to prevent its deletion. The goal is to deceive users into revealing their email account log-in credentials. It must be emphasi
Landfall is Android spyware targeting Samsung Galaxy devices (mainly in the Middle East). It is capable of recording audio, tracking location, and accessing photos, contacts, and call logs. The malware spreads via malicious DNG image files by exploiting a vulnerability in Samsung's image processin
We have tested the malware and found that it is ransomware. Our team has discovered Zarok while inspecting samples uploaded to VirusTotal. Upon execution, Zarok encrypts files and appends four random characters to their filenames (e.g., ".ps8v"). For instance, it renames "1.jpg" to "1.jpg.ps8v" an