During a routine investigation, our researchers discovered this fake "Ripple (XRP)" airdrop. It claims that users will immediately receive double the amount of Ripple (XRP) tokens they contribute (other lures are possible). Victims of this scam experience financial loss. IMPORTANT NOTE: We d
Our analysis shows that betanero.co[.]in attempts to obtain permission to send notifications. The site uses a deceptive tactic to trick users into allowing them. For this reason, betanero.co[.]in is untrustworthy and should be avoided, and closed immediately if encountered. When users acce
While investigating suspect websites, our research team discovered mutcitic.co[.]in. Upon examination, we determined that this rogue page promotes spam browser notifications and produces redirects to other (likely dubious/dangerous) sites. Mutcitic.co[.]in and similar webpages are primarily access
Liabodswous.co[.]in is a rogue webpage designed to promote browser notification spam and redirect visitors to different (likely unreliable/hazardous) sites. Most visitors access pages of this kind via redirects generated by websites utilizing rogue advertising networks. Our research team discovere
Our analysis shows that the site (zksync[.]run) is a fraudulent copy of the legitimate ZKsync platform (zksync.io). It is operated by scammers attempting to steal cryptocurrency by misleading users with false promises of token giveaways. This site should be avoided to prevent financial loss.
We have inspected the website (ore.distribution[.]finance) and concluded that it is a clone of the original ORE page (ore.supply). The fraudulent site is managed by scammers who aim to steal cryptocurrency from individuals. Fraudsters promise free tokens as a lure. This page should be avoided to p
We found that acrincelibly.co[.]in is trying to get permission to send notifications. The site employs a misleading tactic (clickbait) to trick visitors into accepting those notifications. Because of this, acrincelibly.co[.]in should not be trusted and should be avoided (and closed if encountered)
Our researchers discovered this Bactor ransomware while browsing new file submissions to the VirusTotal website. Ransomware is a type of malware that encrypts data and demands a ransom for the decryption. On our testing system, Bactor encrypted files and added a ".bactor" extension to their filen
The "Emirates First Class Subscription" scam refers to fake Emirates airline webpages that target personally identifiable and finance-related data. The lure is membership for ten First Class flights at an incredibly low cost. It must be stressed that this phishing scam is not associated with the a
Our examination of the "Interactive Brokers - Renewal of W-8BEN Form Required" email revealed that it is fake. Presented as an "official notification" from Interactive Brokers, this message claims that the recipient must renew their W-8BEN form to comply with US tax regulations. It must be emphas