Navi RAT is a Remote Access Trojan (RAT) written in the Go programming language. Beyond remote access, it also functions as an information stealer, collecting cryptocurrency wallet data, Roblox session cookies, files, and other personal information from infected devices. Threats like this typical
Our researchers discovered growthsummitlabs[.]com while investigating dubious websites. After examining this rogue page, we determined that it promotes browser notification spam and generates redirects to other (likely unreliable or dangerous) sites. Growthsummitlabs[.]com impersonates a G
Our research team found the trackturbonest[.]co.in rogue page while investigating suspicious websites. After inspecting this webpage, we learned that it uses a fake CAPTCHA to trick visitors into allowing browser notifications. Once permission is granted, trackturbonest[.]co.in delivers fake virus
We analyzed this page and found that it runs a fake Microsoft Defender alert designed to trick visitors into purchasing antivirus software through an affiliate link. The page impersonates a Windows security system - displaying a fabricated sign-in warning, a fake scan, and alarming vulnerability r
During a routine inspection, our team came across signalqueryhub.com - a fake search engine that is spread through browser hijackers and similar unwanted software. It cannot generate search results on its own and instead redirects users through intermediary sites to land on a legitimate engine. S
After reading this "First Abu Dhabi Bank - Funds Transfer Documents" email, we determined that it is spam. It claims that the recipient's funds, which are worth over three million USD, will be transferred once the necessary information is provided. Evidently, this phishing mail targets private dat
HyperText Markup Language (HTML) is a content language for Internet browser display. Hence, "HTML/Fraud" refers to HTML-based content used for fraudulent purposes. Additionally, "HTML/Fraud" or similar variations are used by some anti-virus programs as detection names. This term encompasses a wid
LOCK belongs to the Xorist ransomware family. Like most programs of this type, it prevents victims from accessing their files by encryption. LOCK also renames every encrypted file by appending the ".LOCK" extension to its filename. For example, it renames "1.jpg" to "1.jpg.LOCK", "2.jpg" to "2.jpg
Our researchers discovered the "You May Have Viruses On After Visiting An Adult Website" scam while inspecting dubious websites. We found two variants of this scheme - one in English and the other in Portuguese. Like most scams of this kind, "You May Have Viruses On After Visiting An Adult Webs
During our investigation of suspicious cryptocurrency sites, our team came across apyx[.]team - a fraudulent page promoting a fake "APYX Token Launch" voting event. The site claims visitors can earn rewards by casting a "Genesis Vote," but it is actually designed to steal cryptocurrency by trickin
Enterprise security teams have spent years hardening identity platforms, enforcing multifactor authentication, and strengthening endpoint security. Yet the latest compromise involving competitive intelligence platform Klue shows a different route into corporate environments: trusted third-party inte
Android banking malware has steadily evolved over the past decade. What once focused primarily on stealing banking credentials has transformed into sophisticated platforms capable of remotely controlling entire devices. The emergence of Rokarolla demonstrates just how far this evolution has progress
The compromise of more than 400 packages in the Arch User Repository (AUR) is one of the most significant, if not the most significant, Linux software supply chain incidents of 2026. More importantly, the campaign shows that threat actors increasingly target the trust relationships that underpin ope
The recent surge in supply chain-focused attacks and leaked malware tooling has underscored a structural shift in modern cybercrime: attackers are no longer relying solely on isolated exploits but are increasingly industrializing malware development and distribution through developer ecosystems. Ac
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a newly exploited SolarWinds Serv-U vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, signaling active targeting of organizations running vulnerable versions of the managed file transfer platform. The
Combo Cleaner is an all-in-one solution developed by RCS LT, the company behind PCrisk.com. Making a powerful entrance as a comprehensive antivirus and system optimization solution, it's here to shield you from various threats on Windows, macOS, Android, and iOS.
When assessing the best way to reclaim your privacy, the personal data removal service Incogni is a popular option. It works by automatically sending requests to data brokers and people-search websites, erasing personal information from their databases.
Launched in 2010 by the privacy company Abine and based in the U.S., DeleteMe has over a decade of experience in cleaning up personal information from the web. This review examines DeleteMe's pricing, features, performance, and value.
Optery stands out as the most flexible personal data removal service. Optery may not be overflowing with the advanced features of more expensive services, but it's getting the results done, and lets you only pay for the level of security you require.
When it comes to Privacy Bee, a privacy protection service that scrubs your personal information from data broker databases and public listings, this review, written by the PCrisk team, will be a solid reference.