Required Order Email Scam
Upon reviewing the "Required Order" email, it has been determined to be spam. The email masquerades as a potential order from a past customer, enticing recipients to divulge their email login credentials through a... Read more
Tycoon Phishing Kit Uses Multiple Attack Vectors
The cybersecurity community has expressed significant concerns over a recently discovered phishing toolkit called Tycoon 2FA. Uncovered by the Sekoia Threat Detection & Research (TDR) team in October 2023, and... Read more
RAM Hand-to-Hand Couriers Email Scam
Upon reviewing the email from "RAM Hand-to-Hand Couriers," it became clear that it is fraudulent. This email attempts to lure recipients to a phishing website by falsely claiming that their shipment is subject to... Read more
Bawelteey.com Uses Adult Content as Bait
After examining bawelteey.com, it's evident that the website employs deceptive methods to persuade visitors into accepting its notifications. Moreover, bawelteey.com redirects users to potentially unsafe websites.... Read more
SatanCD Ransomware Will Encrypt Most Files
SatanCD, a variant of the Chaos ransomware, operates by encrypting files and demanding payment for decryption. When tested SatanCD on our system, it successfully encrypted files and modified their names by adding a... Read more
TechBrowser Adware
Upon evaluating the TechBrowser application, it has been identified as adware due to its tendency to display intrusive advertisements and concerns regarding potential access to and collection of user data.... Read more
Colour Picker Browser Extension
Upon analyzing the Colour Picker application, we identified typical characteristics of a browser hijacker. Colour Picker alters browser configurations to promote a specific web address and may also gather various... Read more
Napoli Ransomware Holds Files Hostage
Our analysts came across the Napoli malware during the examination of new file submissions. This malicious software is derived from the Chaos ransomware. During our testing, Napoli ransomware encrypted files and added... Read more
ELITTE87 Ransomware Encrypts Infected Drives
During our examination of new malware samples, we uncovered ELITTE87, a variant of ransomware associated with the Phobos family. ELITTE87 encrypts files, alters filenames, and presents two ransom notes: a pop-up... Read more
Allvissolutions.com Shows Misleading Bot Check
During our investigation of suspicious webpages, our research team discovered the rogue site known as allvissolutions.com. This site promotes browser notification spam and redirects visitors to other websites, which... Read more
CompressModem Adware
During our examination of the CompressModem application, we noted its display of intrusive advertisements, classifying it as adware. Apart from showcasing ads, CompressModem has the capability to collect... Read more
WINELOADER Backdoor Deployed Against German Targets
Russian-affiliated threat actors have deployed the WINELOADER backdoor in recent cyber assaults directed at German political organizations. In late February 2024, researchers from Mandiant identified the... Read more