VersionTrust Adware
Mac users are facing a new threat in the form of adware called "VersionTrust," which belongs to the notorious family of AdLoad adware variants. This insidious software is designed to infiltrate Mac systems, compromise... Read more
Durian Malware Linked to Kimsuky North Korean Threat Actor
The North Korean threat group known as Kimsuky has been observed using a new Golang-based malware called Durian in targeted cyber attacks against two South Korean cryptocurrency companies. According to security... Read more
Fake Google Sheets Extension
Our research team uncovered this counterfeit Google Sheets browser extension during an investigation into deceptive websites. This malicious software masquerades as a spreadsheet application from the web-based Google... Read more
Hyperliquid (HYPE) Airdrop Scam
Upon reviewing the claim-hyperliquid.xyz website, we discovered that it promotes a cryptocurrency airdrop; however, further investigation revealed that claim-hyperliquid.xyz is a fraudulent page posing as a legitimate... Read more
CVE-2024-3661 Vulnerability Exploited in TunnelVision Attack
Researchers have described a technique called TunnelVision, which allows threat actors to monitor network traffic of victims by leveraging the same local network. This bypass method, referred to as "decloaking," has... Read more
Paaa Ransomware Encrypts Affected Files
Paaa is a variant of ransomware belonging to the Djvu family. This ransomware encrypts files to prevent victims from accessing them and adds the ".paaa" extension to filenames. It also creates a ransom note named... Read more
Recilopang.xyz Shows Fake Virus Warning Messages
The alarming pop-up advertisements claiming a serious virus infection you might run into while browsing usually are a sign of a misleading site. These alarming alerts are actually schemes designed to deceive... Read more
Valorant Gift Scam Preys on Gamers
Upon investigation, it was determined that a website purporting to offer gifts for the Valorant video game is fraudulent. This scam falsely promises users one thousand Radianite points for free, operating as a... Read more
Vehu Ransomware Locks Infected Systems
We identified Vehu ransomware during our analysis of new malware samples. Our investigation revealed that Vehu is part of the Djvu ransomware family. It encrypts files and appends the ".vehu" extension to filenames,... Read more
Awayurl.net Fake Search Engine
Awayurl.net is the domain of a fake search engine, which is being promoted by the TraceUrl rogue browser extension discovered during our investigation into deceptive websites. Although TraceUrl claims to redirect... Read more
Bc20 Adware
Upon analyzing the Bc20 application, we identified it as part of the Pirrit adware family. Once installed, Bc20 displays intrusive advertisements and may quietly gather various types of user data. Therefore, affected... Read more
EnigmaWave Ransomware Locks Infected Systems
EnigmaWave is a type of ransomware that functions by encrypting data, making it inaccessible, and then demanding payment for decryption. The ransomware program alters the filenames of encrypted files by appending the... Read more