The “Wells Fargo – Account Verification Required” email is part of a phishing campaign that aims to phish users’ bank login credentials. The email informs the recipient that they need to provide certain information to Wells Fargo to keep their banking account. The recipient is given 2 days to send the necessary information, after which the account will be suspended if…
Amnesia stealer is a dangerous trojan infection that falls into the stealer category. It’s a very dangerous infection that can affect both Windows and Android devices. It comes with a wide range of features that include being able to steal information and files, mine and steal cryptocurrency, as well as give remote access to the device to malware operators.
…
Play ransomware is file-encrypting malware, operated by a notorious group of cybercriminals. Play ransomware is often associated with Russian cybergroups, and is known to target various businesses and critical infrastructure organizations in Europe, Australia, North America, and South America. This ransomware is known for its double extortion attacks, as it not only encrypts files but also threatens to publicly release them…
Shadaloo ransomware is a generic file-encrypting malware that essentially takes files hostage and demands payment for their recovery. The ransomware can be identified by the .shadaloo extension added to all encrypted files. Unfortunately, the ransomware targets all personal files. At the moment, only users who have backups can recover files for free as there currently is no free Shadaloo ransomware decryptor…
“Your Netflix Subscription Is Expiring Soon” is a phishing email that aims to phish your Netflix login credentials so your account can be sold to users looking for cheap streaming service subscriptions. The email claims that your account has been terminated because of an issue with your payment. It asks that you update your payment details to reactivate your account.…
Arma dei Carabinieri virus is a screen locker infection that falsely claims you watched/distributed highly illegal content and need to pay a €100 fine to avoid being prosecuted. The virus infection locks the screen and displays a message in Italian, supposedly from Italian authorities Arma dei Carabinieri. The message on the screen is completely fake and users can ignore the contents.…
Miia ransomware is file-encrypting malware. This malware comes from the Djvu/STOP ransomware family and can be identified by the .miia extension added to encrypted file names. The malware targets personal files, encrypts them, and demands payment for their recovery. A free Miia ransomware decryptor is currently not available, and only users with backups can recover files for free at the moment.
…
“Mailbox Abuse Notice” email is part of a phishing campaign that tries to steal users’ email login credentials. The email falsely claims that your email provider noticed an unusual login from an unrecognized device and advises that you review your recent activities. If you interact with the email and click on the link, your email login credentials may be phished…
“Roundcube Password Set To Expire” email falls into the phishing email category. The email falsely claims that users’ passwords are about to expire, and users need to click on the link to keep the same password. Failure to engage with the email will supposedly lead to the accounts being blocked. If users click on the link, they will be asked…
“I’ve Got Access To Your Smartphone” email falls into the sextortion scam email category. It’s a very generic sextortion email that falsely claims a video of the recipient watching pornography has been made and will be distributed to all contacts unless a payment of $1,000 is made to the sender. The email contents are completely false, and users can just…