We have inspected the message and concluded that it is a scam email disguised as a notification from the cloud service provider. It urges recipients to take immediate action to "save" their files. The scammers behind this message seek to trick recipients into opening fake websites and following th
NodeCordRAT is a type of malware (a Remote Access Trojan, or RAT) that is distributed by hiding it inside fake npm packages. The RAT uses Discord as a communication channel and enables cybercriminals to control infected devices remotely. It is used mainly to steal information from web browsers and
While examining suspicious websites, our researchers came across claiming-campaign[.]com, a fraudulent page posing as the official Aave platform. The site falsely claims that users affected by a recent Aave attack can now recover their lost assets by connecting their wallet. In reality, it is a cr
CloudZ is a remote access Trojan (RAT). It uses a custom plugin to steal credentials and potentially capture one-time passwords (OTPs). CloudZ also avoids detection by running malicious functions in system memory and checking for debuggers and sandbox environments. The RAT should be removed from i
3Crypt RAT is a Remote Access Trojan targeting macOS systems. The moment it executes, it performs thorough profiling of the infected machine - collecting hardware identifiers, reading the device's security settings, mapping the network, and enumerating every running process. It then installs mul
MovieBox is advertised as an app that allows users to access various movie-related sites directly from a new browser tab. This app changes browser settings to promote a fake search engine (feed.moviebox-online.com) and collects various user-system information. Apps of this type are termed browser
Pulse is a Chromium-based browser. It is promoted as an Internet browser that integrates AI (Artificial Intelligence). Upon inspection, we determined that this rogue browser is a PUA (Potentially Unwanted Application). It produces redirects to several fake search engines that cannot generate searc
We have examined the site and found that it is a scam that offers visitors a "bonus" as a lure. Its goal is to trick visitors into taking steps that could result in financial loss and possibly other issues, such as information theft. Thus, it is highly advisable not to trust the sites involved in
Search1.me is the address of a fake search engine. Typically, such web searchers are promoted by PUAs (Potentially Unwanted Applications) classified as browser hijackers. Search1.me has been observed being pushed by the Better Search browser hijacker. Browser hijackers promote fraudulent w
Find-it.pro is a fake search engine discovered by our researchers during a routine investigation. In most cases, sites of this kind cannot provide search results and redirect to legitimate search engines. These pages are promoted through rogue redirects produced by browser hijackers. Brows
The npm ecosystem is facing one of its most aggressive and technically sophisticated supply chain attacks to date. Over the past several months, security researchers have uncovered a sprawling malware campaign known as Shai-Hulud and its newer variant, Mini Shai-Hulud, which compromised hundreds of
The rapid rise of open-source repositories of artificial intelligence has transformed platforms like Hugging Face into critical infrastructure for developers, researchers, and enterprises. Millions of users rely on these repositories to download models, datasets, and applications that accelerate AI
The lines between cybercrime and state-sponsored espionage continue to blur. Iranian threat actors now adopt ransomware tradecraft to conceal intelligence-gathering operations. Recent investigations into attacks by the Iranian-linked MuddyWater group show a sophisticated evolution in tactics. Here,
The global cybercrime landscape in 2026 shows a sharp convergence of state-sponsored hacking, transnational fraud networks, and highly industrialized scam operations. Cryptocurrency remains at the center, offering both high-value targets and efficient laundering methods. Recent reports from TRM Labs
The emergence of Bluekit, as recorded by security researchers at Varonis, marks a significant evolution in the phishing-as-a-service (PhaaS) ecosystem. It shows how cybercrime continues to industrialize through automation, centralization, and the integration of artificial intelligence. Recent resea
Combo Cleaner is an all-in-one solution developed by RCS LT, the company behind PCrisk.com. Making a powerful entrance as a comprehensive antivirus and system optimization solution, it's here to shield you from various threats on Windows, macOS, Android, and iOS.
When assessing the best way to reclaim your privacy, the personal data removal service Incogni is a popular option. It works by automatically sending requests to data brokers and people-search websites, erasing personal information from their databases.
Launched in 2010 by the privacy company Abine and based in the U.S., DeleteMe has over a decade of experience in cleaning up personal information from the web. This review examines DeleteMe's pricing, features, performance, and value.
Optery stands out as the most flexible personal data removal service. Optery may not be overflowing with the advanced features of more expensive services, but it's getting the results done, and lets you only pay for the level of security you require.
When it comes to Privacy Bee, a privacy protection service that scrubs your personal information from data broker databases and public listings, this review, written by the PCrisk team, will be a solid reference.