DeVixor is a powerful Android malware that steals financial data, monitors devices, and allows remote control. It also includes a ransomware feature that can lock devices for cryptocurrency payments and is controlled using Firebase and Telegram to manage infections and evade detection. DeVixor is
During a routine investigation, our researchers discovered this fake "Solana Seeker" webpage. It promises free SKR – Solana Mobile's native token in order to lure users into exposing their digital wallets to a cryptocurrency drainer. It must be emphasized that this scam is not associated with So
We have reviewed the email and found that it contains a fake message regarding a hotel reservation for a group. It contains a link designed to download a malicious script file. Thus, we conclude that this fraudulent email is likely used to deliver malware. Recipients should ignore this message to
Our analysis shows that it is a typical survey scam. It involves a phishing email and a fake website. The goal is to trick individuals into believing that they will receive a prize after completing certain steps. However, victims never receive any prizes and have their personal information or mone
Our team has inspected the page (vote-lista[.]com) and found that it is a scam website masquerading as the original Lista DAO site (lista.org). The fraudulent page is designed to trick visitors into completing a step that can result in the theft of their cryptocurrency holdings. Thus, it should no
The WebWebWeb.com browser hijacker infiltrates Internet browsers (Google Chrome and Mozilla Firefox) through free software downloads. At time of testing, this website was promoted via an application called 'video downloader professional'. Developers of this browser settings-changing adware (LINK6
Push-news[.]org is designed to trick visitors into agreeing to receive its notifications and open about two, three other unreliable pages (it depends on the geolocation of its visitors). Push-news[.]org is similar to news-mosuka[.]cc, neehoose[.]com, boustahe[.]com, and hundreds of other pages of
We have reviewed the email and determined that it is a phishing message disguised as a security notification from American Express. It is created to appear urgent and important to trick recipients into opening a fake website and entering personal information. This and similar scams should be ignor
PC App Store is a legitimate application that allows easy access to various software vendors. However, while this is a genuine piece of software – there are no guarantees that the content advertised through it will not have undesirable features, such as data tracking. Furthermore, PC App Store
Search1.me is the address of a fake search engine. Typically, such web searchers are promoted by PUAs (Potentially Unwanted Applications) classified as browser hijackers. Search1.me has been observed being pushed by the Better Search browser hijacker. Browser hijackers promote fraudulent w
In 2025, the Russian state-sponsored cyber threat actor commonly known as Fancy Bear resurfaced with a refined credential-stealing campaign that demonstrated how simplicity, when paired with precision, can outperform technical complexity. Security researchers at Recorded Future, tracking the a
In late 2025, cybersecurity researchers began sounding alarm bells over a new threat in the cybercrime landscape named the Kimwolf botnet, an Android-based malware network that has swiftly ballooned into one of the largest active botnets observed over the last few months. Often described as an Andr
In late 2025 and early 2026, Trust Wallet confirmed that its Chrome browser extension played a central role in a devastating series of supply chain attacks. Trust Wallet is one of the world's most widely used noncustodial cryptocurrency wallets. These attacks were tied to Shai-Hulud, a sophisticated
In December 2025, cybersecurity researchers observed a significant increase in the RansomHouse ransomware-as-a-service (RaaS) toolset. This signals a concerning trend in adversary capabilities. RansomHouse operators enhanced their encryption engine with a new variant called "Mario." It replaced an
A new account takeover method called GhostPairing is now targeting WhatsApp. This exploitation doesn't use stolen passwords, SIM swapping, or zero-day vulnerabilities; instead, it manipulates WhatsApp's device linking feature through advanced social engineering, covertly granting attackers persisten
Combo Cleaner is an all-in-one solution developed by RCS LT, the company behind PCrisk.com. Making a powerful entrance as a comprehensive antivirus and system optimization solution, it's here to shield you from various threats on Windows, macOS, Android, and iOS.
For VPNs, NordVPN stands out as a top contender. Its global reputation is partly due to its speed, security, and ability to unblock streaming services. We put this to the test, performing a comprehensive hands-on evaluation across different platforms to see how well it works.
ExpressVPN is a well-known premium VPN service with a strong reputation for security, speed, and reliability. Founded in 2009 and headquartered in the British Virgin Islands, it has long been a top choice for users seeking online privacy and the ability to bypass internet restrictions.
Proton VPN is a popular VPN service developed by the Swiss company Proton AG (the team behind ProtonMail). It's known for its strong focus on privacy, offering advanced security features and an unlimited free plan - something rare among VPNs.
Surfshark launched in 2018 and quickly grew into a popular VPN choice known for its unlimited device policy and budget-friendly pricing. In recent years, Surfshark has expanded beyond a basic VPN into a comprehensive security suite.