The “Capital One – Transfer Schedule” email is part of a phishing campaign that targets users’ Capital One login credentials. The email is disguised as a notification about an upcoming transfer of $6,920. The email has a “View transfer activity” button, which would lead users to a phishing site. Users who type in their Capital One login credentials may suffer…
The “Chase Account Temporarily Restricted” email is part of a phishing campaign that targets users’ Chase login credentials. The email is made to look like a security alert from Chase about unusual activity on the account. Supposedly, the recipient’s account has been restricted because of a security breach. To regain access to the account, users are requested to click the…
The “Secure Your Trust Wallet Account” email is part of a phishing campaign that targets Trust crypto wallet credentials. The email falsely claims that Trust has supposedly detected an action that requires immediate verification to secure the account. If you click on the button provided in the email, you will be taken to a phishing site that requests your recovery phrase.…
The “American Express – Unrecognized Transaction” email is part of a phishing campaign that falsely explains users need to verify a recent transaction made from their American Express account. The email asks that recipients use the provided button to log in to their accounts. However, because this is a phishing email, the button will lead to a fake American Express site.…
Sage ransomware is file-encrypting malware that targets personal files. The malware is part of the Djvu/STOP ransomware family and can be identified by the .sage extension added to encrypted files. Unfortunately, you cannot open any files with this extension unless you first use a decryptor on them, which only the malware operators currently have. Only users who have backups of…
The “TNT Express” email is part of a phishing campaign that aims to steal users’ email login credentials. The email is disguised to look like a notification email from international shipping company TNT. The recipient supposedly has a package scheduled for delivery. The email has a malicious attachment, disguised as documentation related to the package. If users open the attachment, they…
The “Zoho – Review Your Outgoing Emails” email falls into the phishing scam category. The email aims to steal users’ Zoho login credentials by trying to trick users into trying to log in on a phishing site. The email falsely claims that recipients need to review their outgoing emails through Zoho’s new system. Some emails have supposedly been rejected and not…
The “Update Server Terms Now” email is part of a phishing campaign that aims to steal users’ email login credentials. The email claims that the recipient’s email account will be terminated on a specific date unless users click on the provided button to indicate that they are still using the email account. Users who interact with the email will be…
The “Email Verification Campaign” email is part of a phishing campaign that intends to steal users’ email login credentials. The email is disguised as a security alert from the recipient’s email provider and claims that they need to verify that the email account is still in use. Recipients are asked to click the provided “Verify” button to verify their accounts.…
Acrid is a stealer trojan that aims to steal users’ personal information. It’s a very serious infection that can sneak in unnoticed and may steal information from browsers, including passwords and credit card information. It also targets cryptocurrency wallets. Overall, infection can have very serious consequences, as malicious actors could not only access users’ accounts but also steal money.
…