We have reviewed the email and concluded that it is a phishing message disguised as a final notice from an email service provider. It contains a deceptive link that leads to a fake site designed to steal personal information. This email should be ignored to avoid the associated risks. This
We have inspected the Ad Block North browser extension and found that it has traits of adware (software that delivers unwanted ads), while it is supposed to block ads. Also, this extension can access various data. Thus, it is advisable to avoid adding Ad Block North to web browsers. Ad Blo
Our examination shows that this is a phishing email disguised as an account security alert from an email service provider. It is crafted to trick recipients into opening the provided website, which is designed to steal personal information. Messages of this kind should be identified as scams and i
Our researchers discovered this fake "$GUARD" airdrop during a routine inspection of suspicious websites. Upon further examination, we learned that this scam operates as a cryptocurrency drainer – by stealing digital assets from exposed cryptowallets. IMPORTANT NOTE: We do not review crypto
Our inspection of the "Messages Awaiting Your Attention" email revealed that it is spam. It is presented as a notification concerning undelivered messages that are pending verification. The purpose of this spam campaign is to lure recipients into visiting a phishing site targeting email log-in cre
Phenol is a piece of malicious software categorized as ransomware. Malware within this category operates by encrypting data and demanding a ransom for the decryption. On our test machine, this ransomware encrypted files and added the attackers' email address and the ".phenol" extension to their f
MacSync is a piece of malicious software that is a rebranded and upgraded version of the mac.c stealer. mac.c was developed in the spring of 2025, and a month later, the rebrand occurred. MacSync retains the data-stealer functionalities but also has backdoor capabilities. While the stealer was w
BaoLoader is a program designed to introduce additional harmful content into compromised devices. This malware has primarily infiltrated malicious Google Chrome browser extensions. It is also capable of executing malicious JavaScript. BaoLoader is installed onto systems with seemingly legitimate
Our analysis shows that grattederia[.]com is an unreliable website that attempts to obtain permission to deliver push notifications using deceptive instructions. If accepted, these notifications may lure users into visiting additional unsafe or malicious sites. For this reason, grattederia[.]com s
Gentlemen is ransomware that encrypts files and appends a random extension to them. For example, during encryption a file named "1.jpg" is changed to "1.jpg.7mtzhh", "2.png" to "2.png.7mtzhh", and so fort. Also, provides a ransom note ("README-GENTLEMEN.txt"). Its purpose is to extract money from