How credentials get stolen in seconds, even with a script-kiddie-level phish
This attempt to phish credentials caught our attention, mostly because of its front-end simplicity. Even though this is a script-kiddie-level type of attack, we figured…
Category: MalwareBytes
Fantasy Hub is spyware for rent—complete with fake app kits and support
Researchers at Zimperium identified Fantasy Hub, a new Android spyware developed and sold as a subscription on Russian-language cybercrime forums. Malware-as-a-Service (MaaS) means cybercriminals rent…
Watch out for Walmart gift card scams
You’ve probably seen it before—a bright, urgent message claiming you’ve qualified for a $750 or $1000 Walmart gift card. All you have to do is…
Malwarebytes scores 100% in AV Comparatives Stalkerware Test 2025
The AV-Comparatives Stalkerware Test 2025 delivers a sobering look at the evolving threat posed by stalkerware on mobile devices. Despite measures from both the tech…
Fake CAPTCHA sites now have tutorial videos to help victims install malware
Early on in 2025, I described how criminals used fake CAPTCHA sites and a clipboard hijacker to provide instructions for website visitors that would effectively…
Hackers commit highway robbery, stealing cargo and goods
There’s a modern-day train heist happening across America, and this time, some of the bandana-masked robbers are sitting behind screens. According to new research, a…
Android malware steals your card details and PIN to make instant ATM withdrawals
The Polish Computer Emergency Response Team (CERT Polska) analyzed a new Android-based malware that uses NFC technology to perform unauthorized ATM cash withdrawals and drain…
Take control of your privacy with updates on Malwarebytes for Windows
It’s getting harder to keep your Windows space truly yours, as Microsoft increasingly serves annoying ads and tracks your data across third-party apps. Pushing back…
Cyberattacks on UK water systems reveal rising risks to critical infrastructure
Digital intruders have been targeting UK drinking water systems in what seems to be a growing risk. Recorded Future News sent a request to the…
Should you let Chrome store your driver’s license and passport?
Google has rolled out a new autofill feature for Chrome that goes beyond storing just your passwords, addresses, and credit card numbers. The new “enhanced…
Apple patches 50 security flaws—update now
Apple has released security updates for iPhones, iPads, Macs, Apple Watches, Apple TVs, Safari, and Xcode, fixing nearly 50 security flaws. Some of these bugs…
“Sneaky” new Android malware takes over your phone, hiding in fake news and ID apps
Researchers at Cyfirma have investigated Android Trojans capable of stealing sensitive data from compromised devices. The malware spreads by pretending to be trusted apps—like a…