While browsing new submissions to the VirusTotal website, our researchers discovered the Karma ransomware. It encrypts victims' files in order to demand payment for the decryption. This malicious program is part of the MedusaLocker ransomware family. After we executed a sample of Karma (MedusaLoc
Our review of titanchainedge[.]com reveals that it employs deceptive tactics to trick users into permitting it to send notifications. The site misuses this permission to send unwanted and intrusive content. Therefore, users should avoid allowing notifications from sites like titanchainedge[.]com.
Our team has examined the email and concluded that it is a phishing attempt. It is disguised as a notification from the email service provider and includes a deceptive link that is used to trick recipients into opening a fake login page. The goal is to steal personal information from unsuspecting
We have checked the website (register-chain[.]link) and found that it promotes a fraudulent airdrop (cryptocurrency giveaway). Also, it mimics the original Chainlink site (chain.link) to appear legitimate. The purpose of this page is to steal cryptocurrency. Thus, it should not be trusted. I
Our team has examined Backups and found that it is a variant of the Beast ransomware. Once executed on a system, it encrypts files and appends the victim's ID and the ".BACKUPS" extension to filenames. Also, the ransomware creates a ransom note ("README.TXT"). We have discovered it while inspectin
The WebWebWeb.com browser hijacker infiltrates Internet browsers (Google Chrome and Mozilla Firefox) through free software downloads. At time of testing, this website was promoted via an application called 'video downloader professional'. Developers of this browser settings-changing adware (LINK6
We have reviewed the email and determined that it is a phishing message disguised as a security notification from American Express. It is created to appear urgent and important to trick recipients into opening a fake website and entering personal information. This and similar scams should be ignor
PC App Store is a legitimate application that allows easy access to various software vendors. However, while this is a genuine piece of software – there are no guarantees that the content advertised through it will not have undesirable features, such as data tracking. Furthermore, PC App Store
Search1.me is the address of a fake search engine. Typically, such web searchers are promoted by PUAs (Potentially Unwanted Applications) classified as browser hijackers. Search1.me has been observed being pushed by the Better Search browser hijacker. Browser hijackers promote fraudulent w
While investigating dubious websites, our researchers discovered the "Android Has Detected A Wiretap On Your Phone" scam. It claims that the user's smartphone has been wiretapped. Typically, scams of this kind aim to trick users into downloading/installing or purchasing (likely suspicious/harmful)
In late 2025, cybersecurity researchers began sounding alarm bells over a new threat in the cybercrime landscape named the Kimwolf botnet, an Android-based malware network that has swiftly ballooned into one of the largest active botnets observed over the last few months. Often described as an Andr
In late 2025 and early 2026, Trust Wallet confirmed that its Chrome browser extension played a central role in a devastating series of supply chain attacks. Trust Wallet is one of the world's most widely used noncustodial cryptocurrency wallets. These attacks were tied to Shai-Hulud, a sophisticated
In December 2025, cybersecurity researchers observed a significant increase in the RansomHouse ransomware-as-a-service (RaaS) toolset. This signals a concerning trend in adversary capabilities. RansomHouse operators enhanced their encryption engine with a new variant called "Mario." It replaced an
A new account takeover method called GhostPairing is now targeting WhatsApp. This exploitation doesn't use stolen passwords, SIM swapping, or zero-day vulnerabilities; instead, it manipulates WhatsApp's device linking feature through advanced social engineering, covertly granting attackers persisten
In early December 2025, the cybersecurity community was rocked by the public disclosure of a critical, easily exploitable vulnerability in React Server Components (RSC). RSC is the backbone of many modern web applications. Assigned CVE-2025-55182, and quickly nicknamed React2Shell, this vulnerabilit
Combo Cleaner is an all-in-one solution developed by RCS LT, the company behind PCrisk.com. Making a powerful entrance as a comprehensive antivirus and system optimization solution, it's here to shield you from various threats on Windows, macOS, Android, and iOS.
For VPNs, NordVPN stands out as a top contender. Its global reputation is partly due to its speed, security, and ability to unblock streaming services. We put this to the test, performing a comprehensive hands-on evaluation across different platforms to see how well it works.
ExpressVPN is a well-known premium VPN service with a strong reputation for security, speed, and reliability. Founded in 2009 and headquartered in the British Virgin Islands, it has long been a top choice for users seeking online privacy and the ability to bypass internet restrictions.
Proton VPN is a popular VPN service developed by the Swiss company Proton AG (the team behind ProtonMail). It's known for its strong focus on privacy, offering advanced security features and an unlimited free plan - something rare among VPNs.
Surfshark launched in 2018 and quickly grew into a popular VPN choice known for its unlimited device policy and budget-friendly pricing. In recent years, Surfshark has expanded beyond a basic VPN into a comprehensive security suite.