Our researchers discovered the "Bitcoin.com - 1 New Transaction Has Been Sent" scam while investigating spam emails. This scam claims that the user has an exorbitant incoming Bitcoin transfer, which they can receive after handling the service fee. The goal is to deceive victims into sending money
Our researchers discovered the lavixzuro.co[.]in rogue page while investigating suspicious websites. Upon examination, we learned that it promotes browser notification spam and redirects users to other (likely untrustworthy/hazardous) sites. Most visitors to lavixzuro.co[.]in and analogous webpage
While browsing suspect websites, our research team found the "NAYM Token" airdrop. This fraudulent page claims to be distributing NAYM – the utility token of the Nayms platform (naymtoken.com). It must be emphasized that this scam is not associated with this or any other existing platforms/entitie
During our inspection of the website (claim-plume[.]com), we found that it is a fake page imitating the Plume platform (plume.org). The deceptive page is designed to steal cryptocurrency through a malicious tool. Thus, users should avoid it to protect their crypto holdings. IMPORTANT NOTE: W
We have examined the site (relaunch-project.pages[.]dev) and found that it poses as a legitimate crypto-related platform. It is a scam website designed to trick visitors into connecting their wallets and activating a malicious tool that can drain wallets. IMPORTANT NOTE: We do not review cry
Our examination shows that getdispadsshop[.]com is a deceptive site designed to trick visitors into allowing it to show notifications. Once this permission is given, getdispadsshop[.]com can display fake warnings (and similar messages). Interacting with such notifications can expose users to vario
Oxs-protect.co[.]in is a rogue webpage. Its purpose is to deceive visitors into permitting browser notification delivery. This page can redirect users to different (likely unreliable/harmful) sites as well. Most visitors to oxs-protect.co[.]in and analogous webpages access them through redirects
While investigating untrustworthy sites, our researchers found the internetrelink.co[.]in rogue webpage. It operates by endorsing browser notification spam and redirecting visitors to other (likely dubious/hazardous) websites. Most users access pages like internetrelink.co[.]in via redirects produ
Solara is ransomware that we discovered while analysing malware samples uploaded to VirusTotal. Our examination shows that Solara is based on Chaos and designed to encrypt files, append the ".solara" extension to files, and create a ransom note ("read_it.txt"). An example of how Solara renames fi
Our analysis of sephicatielly[.]com shows that it employs clickbait to trick visitors into enabling its notifications. Once permission is granted, it can deliver fake alerts and other deceptive messages. For this reason, sephicatielly[.]com should not be trusted, and permission should never be giv