Our researchers found giumbletepe.co[.]in while browsing untrustworthy websites. This rogue page promotes browser notification spam and generates redirects to various (likely unreliable/dangerous) sites. Most visitors to giumbletepe.co[.]in and analogous webpages enter them through redirects produ
Our researchers discovered this fake "Brevis Snapshot" page (brevis-snapshot[.]xyz; other domains are possible) during a routine investigation. It is in no way associated with the real Brevis Network. The purpose of this scam is to trick users into connecting their digital wallets to a cryptocurre
ResidentBat is an Android spyware that is installed through physical access to the victim’s device. Once infiltrated, it abuses broad application permissions and enables an Accessibility Service, giving it deep and persistent control over the phone. If detected, ResidentBat should be removed imm
After reviewing this "DHL Express - Incoming Package Arrival Notification" email, we determined that it is fake. This phishing message is presented as an alert concerning an incoming package. The goal is to deceive recipients into revealing their email account log-in credentials. It must be emphas
"cPanel Account Suspension" is a spam email claiming that suspicious activity has been detected on the recipient's account. It was supposedly suspended as a security measure. The goal of this fake message is to trick victims into visiting a phishing website targeting email account log-in credentia
The WebWebWeb.com browser hijacker infiltrates Internet browsers (Google Chrome and Mozilla Firefox) through free software downloads. At time of testing, this website was promoted via an application called 'video downloader professional'. Developers of this browser settings-changing adware (LINK6
We have reviewed the email and determined that it is a phishing message disguised as a security notification from American Express. It is created to appear urgent and important to trick recipients into opening a fake website and entering personal information. This and similar scams should be ignor
"Instagram Password Hacker" is a scam run on various deceptive websites. This scheme is presented as a hacking service allowing users to steal Instagram social media accounts by entering their usernames. The aim of "Instagram Password Hacker" is to promote untrustworthy and malicious sites, namel
While investigating dubious websites, our researchers discovered the "Android Has Detected A Wiretap On Your Phone" scam. It claims that the user's smartphone has been wiretapped. Typically, scams of this kind aim to trick users into downloading/installing or purchasing (likely suspicious/harmful)
"Suspicious Activity From Your IP Address" is a fake pop-up error message displayed by a malicious website. Research shows that users often visit this website inadvertently - they are redirected by various unwanted programs that infiltrate systems without consent (the "bundling" method). As well
In early December 2025, the cybersecurity community was rocked by the public disclosure of a critical, easily exploitable vulnerability in React Server Components (RSC). RSC is the backbone of many modern web applications. Assigned CVE-2025-55182, and quickly nicknamed React2Shell, this vulnerabilit
Over the past year, security researchers have spotlighted a growing menace in the ransomware ecosystem: a packer-as-a-service known as Shanya. The rise of Shanya shows how modern attackers outsource core workflow parts. They now rely on services for obfuscation and endpoint detection and response (E
The discovery of a malware campaign called Shai-Hulud 2.0 has drawn widespread attention across the cybersecurity world, not only because it affected a large number of people, but also due to its unusual spread. Although the name sounds like something from science fiction, the threat remains very r
Glassworm has reappeared in a third wave. Researchers have spotted dozens of newly published Visual Studio Code–compatible extensions. These extensions again carry a suite of clandestine, developer-focused malware behaviors. The most recent activity was discovered in late November and reported on
The recent cyberattack on the OnSolve CodeRED system has shocked public safety agencies across the United States, revealing the deep vulnerability of critical emergency-alert infrastructure. The incident was claimed by the INC Ransomware gang, a relatively new, but increasingly active, ransomware-as
Combo Cleaner is an all-in-one solution developed by RCS LT, the company behind PCrisk.com. Making a powerful entrance as a comprehensive antivirus and system optimization solution, it's here to shield you from various threats on Windows, macOS, Android, and iOS.
For VPNs, NordVPN stands out as a top contender. Its global reputation is partly due to its speed, security, and ability to unblock streaming services. We put this to the test, performing a comprehensive hands-on evaluation across different platforms to see how well it works.
ExpressVPN is a well-known premium VPN service with a strong reputation for security, speed, and reliability. Founded in 2009 and headquartered in the British Virgin Islands, it has long been a top choice for users seeking online privacy and the ability to bypass internet restrictions.
Proton VPN is a popular VPN service developed by the Swiss company Proton AG (the team behind ProtonMail). It's known for its strong focus on privacy, offering advanced security features and an unlimited free plan - something rare among VPNs.
Surfshark launched in 2018 and quickly grew into a popular VPN choice known for its unlimited device policy and budget-friendly pricing. In recent years, Surfshark has expanded beyond a basic VPN into a comprehensive security suite.