Friends is ransomware our research team identified while examining new malware samples submitted to VirusTotal. It encrypts files on the victim's machine and demands payment for a decryption key. The attackers also claim to have stolen sensitive data and threaten to make it public if the ransom is
Hommy is a ransomware-type program that we discovered during a routine inspection of new submissions to the VirusTotal website. Hommy belongs to the Makop ransomware family. It encrypts files, renames them, drops a ransom note ("+README-WARNING+.txt"), and changes the desktop wallpaper. On our te
We have inspected this email and determined that it is a scam. It informs recipients that they have been randomly selected to receive a large number of Tesla (TSLA) shares worth over four million dollars and instructs them to get in touch to claim this prize. This is a classic advance-fee scam des
We have inspected this email and determined that it is a phishing scam impersonating American Express. The message claims that a personal loan worth $18,940.00 has been approved for the recipient, then uses a fake security alert to lure them into clicking a verification link. The scammers behind i
We have examined this email and determined that it is a phishing scam disguised as an internal Human Resources notice about a compensation and benefits review. The included link leads to a fake email account sign-in page designed to steal login credentials. This email should be ignored, as interac
The WebWebWeb.com browser hijacker infiltrates Internet browsers (Google Chrome and Mozilla Firefox) through free software downloads. At time of testing, this website was promoted via an application called 'video downloader professional'. Developers of this browser settings-changing adware (LINK6
Search1.me is the address of a fake search engine. Typically, such web searchers are promoted by PUAs (Potentially Unwanted Applications) classified as browser hijackers. Search1.me has been observed being pushed by the Better Search browser hijacker. Browser hijackers promote fraudulent w
Pulse is a Chromium-based browser. It is promoted as an Internet browser that integrates AI (Artificial Intelligence). Upon inspection, we determined that this rogue browser is a PUA (Potentially Unwanted Application). It produces redirects to several fake search engines that cannot generate searc
After reviewing this email, it has become evident that it is a fraudulent message impersonating PayPal and sent by malicious actors. The intention behind this email is to trick recipients into divulging sensitive data and potentially initiating financial transfers. Thus, recipients are strongly ad
.Xyz is a new variant of Jigsaw ransomware. Following infiltration, this ransomware encrypts various files stored on victims' computers. This is achieved using asymmetric cryptography. During encryption, this ransomware appends the name of each encrypted file with a ".xyz" extension and, thus, it
The compromise of more than 400 packages in the Arch User Repository (AUR) is one of the most significant, if not the most significant, Linux software supply chain incidents of 2026. More importantly, the campaign shows that threat actors increasingly target the trust relationships that underpin ope
The recent surge in supply chain-focused attacks and leaked malware tooling has underscored a structural shift in modern cybercrime: attackers are no longer relying solely on isolated exploits but are increasingly industrializing malware development and distribution through developer ecosystems. Ac
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a newly exploited SolarWinds Serv-U vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, signaling active targeting of organizations running vulnerable versions of the managed file transfer platform. The
The cybersecurity community has spent years warning that operational technology (OT) systems are among the most attractive targets for state-sponsored threat actors. Recent incidents involving fuel tank monitoring systems across the United States show that these concerns are no longer theoretical.
Cybercriminals have spent years refining techniques that exploit trust. They impersonate brands, abuse legitimate services, and manipulate search engines to display malicious content to unsuspecting users. The emergence of generative AI platforms has introduced another powerful trust mechanism into
Combo Cleaner is an all-in-one solution developed by RCS LT, the company behind PCrisk.com. Making a powerful entrance as a comprehensive antivirus and system optimization solution, it's here to shield you from various threats on Windows, macOS, Android, and iOS.
When assessing the best way to reclaim your privacy, the personal data removal service Incogni is a popular option. It works by automatically sending requests to data brokers and people-search websites, erasing personal information from their databases.
Launched in 2010 by the privacy company Abine and based in the U.S., DeleteMe has over a decade of experience in cleaning up personal information from the web. This review examines DeleteMe's pricing, features, performance, and value.
Optery stands out as the most flexible personal data removal service. Optery may not be overflowing with the advanced features of more expensive services, but it's getting the results done, and lets you only pay for the level of security you require.
When it comes to Privacy Bee, a privacy protection service that scrubs your personal information from data broker databases and public listings, this review, written by the PCrisk team, will be a solid reference.