Our research team found the HYFBTCLOCKER ransomware during a routine inspection of new file submissions to the VirusTotal site. It operates by encrypting victims' data and creating a ransom-demanding message. After we executed a sample of HYFBTCLOCKER on our test system, it encrypted files and ad
Our research team discovered this fake "RizzmasCTO" airdrop during a routine investigation. This bogus giveaway operates as a cryptocurrency drainer – by draining funds from exposed cryptowallets. It must be emphasized that this scam is not associated with any existing projects, platforms, or enti
We have inspected maciboherrilon[.]com and found that this website uses clickbait to obtain permission to send notifications. If visitors agree to receive those notifications, they can be exposed to scams and other threats. Typically, sites like maciboherrilon[.]com send fake warnings and other mi
Our review of the "DHL Global - Shipment Tracking Number" email revealed that it is fake. This spam message requests the recipient to confirm the generation of their shipment tracking number. The purpose of this phishing campaign is to trick victims into disclosing private information to a fake DH
Our team has reviewed the email and found that it contains a fake notification regarding a request to cancel an email account. The purpose of this phishing message is to steal personal information through a fake website. Recipients should ignore it to avoid the potential threats. This phis
Our review of joiestic[.]com reveals that it uses deceptive content to trick visitors into enabling notifications. After permission is granted, the site often delivers fake messages created to promote mainly untrustworthy websites. In general, joiestic[.]com is unsafe and should be closed immediat
We have inspected the email and determined that it is a phishing email disguised as a purchase order request. The scammers behind it aim to trick unsuspecting recipients into clicking the provided link and disclosing personal information on the fake website that opens. This scam email should be ig
We have inspected the email and concluded that it is a phishing email masquerading as a booking inquiry from Pretpark Tours, a travel agency in the Netherlands. This scam email is designed to trick recipients into opening a deceptive website and entering personal information. Falling for it can re
Our analysis shows that this is a phishing email posing as an invoice from HSBC, a legitimate financial services company. Like most phishing emails, this one is designed to trick recipients into sharing personal information on a fake website. Such messages should be ignored to avoid account hijack
While browsing untrustworthy websites, our research team discovered migmenable[.]com. It is a rogue webpage that promotes browser notification spam and generates redirects to other (likely dubious/harmful) sites. Most visitors to migmenable[.]com and similar pages access them through redirects cau