TXTME ransomware is malicious software that encrypts files. The ransomware is part of the Dharma ransomware family and can be identified by the extension that ends in .TXTME added to encrypted files. The extension also includes a unique ID assigned to you, as well as the malicious actors’ contact email address. Unfortunately, your files having that extension means they’ve been…
“ChatGPT malware” refers to all malicious activities performed by impersonating ChatGPT, an artificial intelligence chatbot. Due to its extremely high popularity, malicious actors often misuse the popularity for their malicious purposes. That includes disguising malware as ChatGPT apps and desktop clients, as well as distributing ChatGPT cracked versions that supposedly give users access to premium features. It goes without saying…
The “Resolv Discord Verification” scam refers to a malicious attempt to steal users’ cryptocurrencies by imitating the legitimate Resolv website. The “Resolv Discord Verification” scam is hosted on discresolv.xyz, and it claims that users need to complete a Discord verification process in order to access the Discord server. The site looks very similar to the legitimate one (resolv.xyz) in design, though the…
The “Instagram Password Hacker” scam refers to fake services that claim to allow users to get Instagram account passwords by simply entering the username. instagramhackonline.com is one of the sites promoting these scams. The site requires users to enter an Instagram username to get the password. If users initiate this supposed hack, they will get an alert saying they need to…
MARK ransomware is a file-encrypting malware that belongs to the Makop ransomware family. These types of infections take files hostage by encrypting them and demanding a payment for their recovery. Unfortunately, encrypted files will not be openable unless they’re first put through a decryptor. This ransomware can be identified by the extension it adds to encrypted files, specifically .[decsupp24@tuta.io].MARK. The…
The SyncAppFix scam refers to a crypto scam hosted on wallets.syncappfix.info that tries to phish information related to users’ crypto wallets. SyncAppFix is being promoted as a decentralized platform wallet that ensures the security and integrity of digital assets. However, the site promoting this scam tries to phish information related to users’ digital wallets. Specifically, the malicious actors operating this scam site…
There is currently an Onyx Goliath Staking crypto scam going around, trying to trick users into connecting their crypto wallets to a fraudulent site that activates a crypto drainer that steals all funds in the wallet. The scam is hosted on onyx-migration.com, a nearly identical site to onyx.org, the legitimate site for the Onyx blockchain platform. The Onyx platform is in…
The “SingularityNET (AGIX) Airdrop” scam is hosted on agix-finance.com, and it promotes a fake crypto giveaway. The site tries to trick users into connecting their crypto wallets so a crypto drainer could be activated to steal all funds in the wallets. SingularityNET is a legitimate platform, but it has nothing to do with this scam. Malicious actors have merely created a…
The “Capital One – Unlock Your Account Access” email is part of a phishing campaign that targets Capital One customers. The email tries to steal users’ Capital One online bank login credentials by trying to trick them into typing them on a phishing site. The email is disguised as a notification from Capital One, informing users about an issue with a…
The “Mailbox Storage Notification” email is a phishing attempt that intends to steal users’ email login credentials. The email falsely informs recipients that their mailbox storage is approaching its limit, as 85% of its capacity has been filled. Recipients are warned that if they do not free up storage, they may become unable to send or receive new emails. The email…