MORTAR is ransomware we discovered during a routine inspection of new submissions to the VirusTotal website. It targets corporate networks, encrypts files, and drops a ransom note named README-[victim's ID].txt. On our test machine, MORTAR appended a unique victim ID as the extension to each encr
Our research team found the lerantixflowcore[.]co.in rogue page while investigating suspicious websites. After inspecting this webpage, we determined that it promotes browser notification spam and redirects visitors to other (likely unreliable/harmful) sites. Lerantixflowcore[.]co.in displ
Our researchers discovered vitisubiferive[.]com while investigating dubious websites. After examining this rogue page, we determined that it promotes browser notification spam and generates redirects to other (likely unreliable/dangerous) sites. Vitisubiferive[.]com uses a fake "confirm yo
Our research team discovered lantixprostream[.]co.in while investigating dubious websites. After examining this rogue page, we determined that it promotes browser notification spam and generates redirects to other (likely unreliable/dangerous) sites. Lantixprostream[.]co.in presents visito
EKZ Stealer is an information stealer designed to silently extract saved passwords, cookies, autofill data, and payment card details from web browsers on infected Windows computers. According to research by Arctic Wolf, it was first observed in May 2026 as part of a campaign targeting organization
After reviewing this email, it has become evident that it is a fraudulent message impersonating PayPal and sent by malicious actors. The intention behind this email is to trick recipients into divulging sensitive data and potentially initiating financial transfers. Thus, recipients are strongly ad
Search1.me is the address of a fake search engine. Typically, such web searchers are promoted by PUAs (Potentially Unwanted Applications) classified as browser hijackers. Search1.me has been observed being pushed by the Better Search browser hijacker. Browser hijackers promote fraudulent w
Pulse is a Chromium-based browser. It is promoted as an Internet browser that integrates AI (Artificial Intelligence). Upon inspection, we determined that this rogue browser is a PUA (Potentially Unwanted Application). It produces redirects to several fake search engines that cannot generate searc
We have inspected the email and discovered that it is a phishing email designed to trick visitors into opening a deceptive website. Once on the site, potential victims are requested to take actions that can lead to cryptocurrency theft. Thus, this and similar emails should be ignored. This
.Xyz is a new variant of Jigsaw ransomware. Following infiltration, this ransomware encrypts various files stored on victims' computers. This is achieved using asymmetric cryptography. During encryption, this ransomware appends the name of each encrypted file with a ".xyz" extension and, thus, it
The operators behind the SHub macOS infostealer have introduced a more sophisticated variant called "Reaper." This shows how macOS-focused malware keeps evolving, moving beyond basic credential theft into persistent, multi-stage compromise operations. The latest campaign blends social engineering,
The npm ecosystem is facing one of its most aggressive and technically sophisticated supply chain attacks to date. Over the past several months, security researchers have uncovered a sprawling malware campaign known as Shai-Hulud and its newer variant, Mini Shai-Hulud, which compromised hundreds of
The rapid rise of open-source repositories of artificial intelligence has transformed platforms like Hugging Face into critical infrastructure for developers, researchers, and enterprises. Millions of users rely on these repositories to download models, datasets, and applications that accelerate AI
The lines between cybercrime and state-sponsored espionage continue to blur. Iranian threat actors now adopt ransomware tradecraft to conceal intelligence-gathering operations. Recent investigations into attacks by the Iranian-linked MuddyWater group show a sophisticated evolution in tactics. Here,
The global cybercrime landscape in 2026 shows a sharp convergence of state-sponsored hacking, transnational fraud networks, and highly industrialized scam operations. Cryptocurrency remains at the center, offering both high-value targets and efficient laundering methods. Recent reports from TRM Labs
Combo Cleaner is an all-in-one solution developed by RCS LT, the company behind PCrisk.com. Making a powerful entrance as a comprehensive antivirus and system optimization solution, it's here to shield you from various threats on Windows, macOS, Android, and iOS.
When assessing the best way to reclaim your privacy, the personal data removal service Incogni is a popular option. It works by automatically sending requests to data brokers and people-search websites, erasing personal information from their databases.
Launched in 2010 by the privacy company Abine and based in the U.S., DeleteMe has over a decade of experience in cleaning up personal information from the web. This review examines DeleteMe's pricing, features, performance, and value.
Optery stands out as the most flexible personal data removal service. Optery may not be overflowing with the advanced features of more expensive services, but it's getting the results done, and lets you only pay for the level of security you require.
When it comes to Privacy Bee, a privacy protection service that scrubs your personal information from data broker databases and public listings, this review, written by the PCrisk team, will be a solid reference.