phishing websites Archives

Winsage

April 8, 2025

EncryptHub plays dual role as cybercriminal and Windows researcher

EncryptHub, a threat actor linked to intrusions at 618 organizations, reported two Windows zero-day vulnerabilities, CVE-2025-24061 and CVE-2025-24071, to Microsoft, which were resolved in March 2025. The vulnerabilities were reported by an individual named SkorikARI, who has been connected to EncryptHub after the threat actor exposed its login credentials. Researchers at Outpost24 identified this link through multiple pieces of evidence, including exfiltrated password files and a GitHub login associated with SkorikARI. EncryptHub has a history of selling zero-days on hacking forums and has been involved in both freelance development and cybercriminal activities. Despite his expertise, the hacker fell victim to poor security practices, leading to the exposure of personal information and interactions with ChatGPT regarding malware development and self-assessment as a hacker.

AppWizard

April 1, 2025

Google’s Play Store Warning—Do Not Update This Setting

A sophisticated trojan named TsarBot is targeting over 750 legitimate banking and shopping applications on Android devices. It overlays a counterfeit login screen on real apps to capture user credentials. TsarBot is believed to have Russian origins and can remotely control the device's screen, simulating user interactions and capturing device lock credentials through a deceptive lock screen. The trojan is typically installed from phishing websites, where a dropper application delivers the TsarBot APK file. Once installed, it disguises itself as the Google Play Services app and urges users to enable Accessibility services. Users are advised to avoid installing apps from outside the Google Play Store, ensure Play Protect is enabled, and only enable Accessibility Services when necessary to mitigate risks.

Tech Optimizer

March 7, 2025

Webroot Premium

PCMag editors independently select and review products. Webroot Premium combines device-level protection with identity theft tracking and remediation, but its antivirus protection is limited compared to competitors. Webroot Premium costs .99 per year for five devices and one identity, with a family edition available for .99 covering ten devices and identities. Other competitors like Bitdefender Ultimate Security and Norton 360 With LifeLock offer more comprehensive features at similar price points. Webroot AntiVirus has been rebranded as Webroot Essentials, and older versions have been phased out. The installation process for Webroot Premium is straightforward, and it includes a firewall that monitors network activity. Webroot's antivirus effectively identifies malware, achieving a 100% detection rate in tests. It also offers a secure deletion tool and basic identity protection features, including credit monitoring, transaction monitoring, and dark web monitoring, though these features are less comprehensive than those of competitors. Webroot provides 24/7 support for identity restoration, with a monetary guarantee for remediation services up to million for ten family members. Overall, while Webroot Premium offers solid antivirus protection, its identity protection capabilities are limited compared to other security suites.

Tech Optimizer

February 3, 2025

Regularly Update Software and Devices: A Crucial Step in Crypto Security

Regularly updating software, wallets, operating systems, and antivirus programs is essential for cryptocurrency security. Updates patch vulnerabilities that hackers may exploit, safeguard against new threats, enhance compatibility with new features, secure operating systems, and improve phishing and scam prevention. Keeping hardware wallet firmware up to date is crucial for security and compatibility. Regular updates to antivirus software protect against malware that could compromise cryptocurrency. Establishing a routine for updates, enabling automatic updates, checking for manual updates, and backing up data before updating are recommended practices. Delaying critical updates increases exposure to security risks.

Tech Optimizer

December 3, 2024

AV-Comparatives Announces 2024 Phishing Test Results: Avast and McAfee Excel in Yearly Assessment

AV-Comparatives conducted an evaluation of phishing protection in 2024, examining 1,000 phishing URLs across four quarterly assessments. Avast and McAfee achieved detection rates of 95%, though McAfee had a higher incidence of false positives. The evaluation included various antivirus programs and web browsers, with Avast leading the final quarterly test with a 95% detection rate on 250 phishing URLs. Other notable performers included Bitdefender, Kaspersky, McAfee, and Trend Micro, with G Data and Kaspersky also scoring above 90%. Phishing remains a significant cyber threat, leading to potential financial losses and identity theft. AV-Comparatives is an independent testing laboratory recognized for its assessments of cybersecurity products.

Tech Optimizer

October 14, 2024

Windows users are being tricked by sneaky malware scheme – CyberGuy

Hackers are targeting Windows users with a new strain of malware called Lumma Stealer, which spreads through deceptive human verification pages that mimic Google CAPTCHA. These phishing sites, often hosted on various platforms using Content Delivery Networks (CDNs), trick users into clicking a button that copies a PowerShell script to their clipboard. When executed, this script downloads Lumma Stealer from a remote server. The malware is packaged as a file named “dengo.zip,” which must be unzipped and run on the user's machine to become active. Researchers from Cloudsek have identified an increase in malicious sites using this method. To protect against such threats, it is recommended to keep Windows and antivirus software updated, avoid clicking on suspicious links, and refrain from executing unknown commands.

Tech Optimizer

October 10, 2024

The 10 Best Antivirus Solutions With VPN for 2024

The text provides a detailed overview of the top 10 antivirus tools that include VPN capabilities, highlighting their features, pricing, and pros and cons. The antivirus solutions listed are: 1. TotalAV: Best overall with smart scanning and a robust VPN; priced at .25/month (annual plan). 2. Nord Threat Protection: Premium protection against online trackers; priced at .99/month (two-year plan). 3. Norton: AI-enabled antivirus with a powerful VPN; priced at .33/month (one-year plan). 4. Surfshark One: Lightweight antivirus with extensive VPN locations; priced at .69/month (two-year plan). 5. TrendMicro: Strong antivirus and VPN functionality, ideal for secure online transactions; priced at .58/month (annual plan). 6. ESET: Great antivirus and VPN with parental control features; priced at .50/month (annual plan). 7. Avast: Best free antivirus software with real-time protection and a limited VPN; free version available. 8. Intego: Efficient antivirus and VPN designed for Apple Mac users; priced at .50/month (two-year plan). 9. Panda Dome: Powerful antivirus and VPN for an unlimited number of devices; priced at .99/month with a 30-day free trial. 10. Malwarebytes: User-friendly antivirus and VPN combination; priced at .00/month (annual plan) with a 14-day free trial. Each product is evaluated based on its standout features, starting price, availability of a free version, and specific strengths and weaknesses. The text also explains the differences between antivirus software and VPNs, emphasizing the importance of both for comprehensive online security and privacy.

AppWizard

October 3, 2024

Google bans popular Android app now you must delete it from your phone today

Security experts at Check Point Research have warned Android users to examine their smartphones and recently installed applications due to a malicious app that stole approximately £54,000 from users. The fraudulent application, disguised as WalletConnect, was available on the official Google Play Store for over five months and was downloaded around 10,000 times. It drained digital currencies, including NFTs, by exploiting the trusted WalletConnect service and using fake reviews to appear legitimate. The attackers employed phishing techniques and smart contracts to deceive users into authorizing fraudulent transactions. Although Google has removed the app, users are advised to delete it if they suspect they have downloaded it. This incident highlights the sophistication of cybercriminal tactics in the decentralized finance sector, emphasizing the need for users to be cautious about the applications they download.

AppWizard

October 1, 2024

Android Users At Risk! Dangerous Crypto App Still Hiding On Devices: Here’s What To Do

Android users are facing a security threat from the WalletConnect – Airdrop Wallet app, which was available on the Google Play Store for several months and stole approximately ,000 from users. The app was designed to exploit the credibility of WalletConnect, deceiving users into downloading it. It evaded detection for over five months by manipulating its ranking with fake positive reviews. Once installed, the app prompted users to connect their cryptocurrency wallets, leading them to phishing websites and counterfeit applications, resulting in unauthorized transactions. The app has been removed after being downloaded by over 10,000 users, but risks remain for those who still have it installed. Users are advised to delete the app, change their wallet credentials, run anti-malware scans, monitor accounts for suspicious activity, verify app legitimacy before downloading, and enable two-factor authentication on their accounts.

AppWizard

October 1, 2024

Android users, delete this ‘dangerous’ crypto app from your phones – Times of India

A cybersecurity firm identified a malicious application called WalletConnect – Airdrop Wallet in the Google Play Store, designed to steal cryptocurrency from users. The app evaded detection for over five months after its introduction in March 2024, targeting Android users and employing evasion techniques to appear legitimate. It exploited the credibility of the WalletConnect protocol and siphoned approximately ,000 (around 58.6 lakh) in cryptocurrency from victims. The app achieved over 10,000 downloads by using fake positive reviews and advanced crypto drainer toolkits to manipulate search rankings. Users were misled into connecting their wallets and directed to phishing sites, resulting in unauthorized transactions. Despite some negative reviews, the developers countered with fake positive feedback to maintain the app's appearance of legitimacy.