Category: MalwareBytes

Office apps offer connected experiences
29
Jan
2026

Microsoft Office zero-day lets malicious documents slip past security checks

Microsoft issued an emergency patch for a high-severity zero-day vulnerability in Office that allows attackers to bypass document security checks…

Share: X : Microsoft Office zero-day lets malicious documents slip past security checksFacebook : Microsoft Office zero-day lets malicious documents slip past security checksLinkedin : Microsoft Office zero-day lets malicious documents slip past security checksReddit : Microsoft Office zero-day lets malicious documents slip past security checksTelegram : Microsoft Office zero-day lets malicious documents slip past security checksWhatsApp : Microsoft Office zero-day lets malicious documents slip past security checksEmail : Microsoft Office zero-day lets malicious documents slip past security checks
Moltbot
29
Jan
2026

Clawdbot’s rename to Moltbot sparks impersonation campaign

After the viral AI assistant Clawdbot was forced to rename to Moltbot due to a trademark dispute, opportunists moved quickly….

Share: X : Clawdbot’s rename to Moltbot sparks impersonation campaignFacebook : Clawdbot’s rename to Moltbot sparks impersonation campaignLinkedin : Clawdbot’s rename to Moltbot sparks impersonation campaignReddit : Clawdbot’s rename to Moltbot sparks impersonation campaignTelegram : Clawdbot’s rename to Moltbot sparks impersonation campaignWhatsApp : Clawdbot’s rename to Moltbot sparks impersonation campaignEmail : Clawdbot’s rename to Moltbot sparks impersonation campaign
data thief
28
Jan
2026

Malicious Chrome extensions can spy on your ChatGPT chats

Researchers discovered 16 malicious browser extensions for Google Chrome and Microsoft Edge that steal ChatGPT session tokens, giving attackers access…

Share: X : Malicious Chrome extensions can spy on your ChatGPT chatsFacebook : Malicious Chrome extensions can spy on your ChatGPT chatsLinkedin : Malicious Chrome extensions can spy on your ChatGPT chatsReddit : Malicious Chrome extensions can spy on your ChatGPT chatsTelegram : Malicious Chrome extensions can spy on your ChatGPT chatsWhatsApp : Malicious Chrome extensions can spy on your ChatGPT chatsEmail : Malicious Chrome extensions can spy on your ChatGPT chats
WhatsApp logo
28
Jan
2026

WhatsApp rolls out new protections against advanced exploits and spyware

WhatsApp is quietly rolling out a new safety layer for photos, videos, and documents, and it lives entirely under the…

Share: X : WhatsApp rolls out new protections against advanced exploits and spywareFacebook : WhatsApp rolls out new protections against advanced exploits and spywareLinkedin : WhatsApp rolls out new protections against advanced exploits and spywareReddit : WhatsApp rolls out new protections against advanced exploits and spywareTelegram : WhatsApp rolls out new protections against advanced exploits and spywareWhatsApp : WhatsApp rolls out new protections against advanced exploits and spywareEmail : WhatsApp rolls out new protections against advanced exploits and spyware
SMS phishing
27
Jan
2026

Watch out for AT&T rewards phishing text that wants your personal details

A coworker shared this suspicious SMS where AT&T supposedly warns the recipient that their reward points are about to expire….

Share: X : Watch out for AT&T rewards phishing text that wants your personal detailsFacebook : Watch out for AT&T rewards phishing text that wants your personal detailsLinkedin : Watch out for AT&T rewards phishing text that wants your personal detailsReddit : Watch out for AT&T rewards phishing text that wants your personal detailsTelegram : Watch out for AT&T rewards phishing text that wants your personal detailsWhatsApp : Watch out for AT&T rewards phishing text that wants your personal detailsEmail : Watch out for AT&T rewards phishing text that wants your personal details
Whatsapp app logo on a device screen.
27
Jan
2026

A WhatsApp bug lets malicious media files spread through group chats

WhatsApp is going through a rough patch. Some users would argue it has been ever since Meta acquired the once…

Share: X : A WhatsApp bug lets malicious media files spread through group chatsFacebook : A WhatsApp bug lets malicious media files spread through group chatsLinkedin : A WhatsApp bug lets malicious media files spread through group chatsReddit : A WhatsApp bug lets malicious media files spread through group chatsTelegram : A WhatsApp bug lets malicious media files spread through group chatsWhatsApp : A WhatsApp bug lets malicious media files spread through group chatsEmail : A WhatsApp bug lets malicious media files spread through group chats
TikTok
27
Jan
2026

TikTok narrowly avoids a US ban by spinning up a new American joint venture

TikTok may have found a way to stay online in the US. The company announced late last week that it…

Share: X : TikTok narrowly avoids a US ban by spinning up a new American joint ventureFacebook : TikTok narrowly avoids a US ban by spinning up a new American joint ventureLinkedin : TikTok narrowly avoids a US ban by spinning up a new American joint ventureReddit : TikTok narrowly avoids a US ban by spinning up a new American joint ventureTelegram : TikTok narrowly avoids a US ban by spinning up a new American joint ventureWhatsApp : TikTok narrowly avoids a US ban by spinning up a new American joint ventureEmail : TikTok narrowly avoids a US ban by spinning up a new American joint venture
Free cash from Freecash
26
Jan
2026

Get paid to scroll TikTok? The data trade behind Freecash ads

Loyal readers and other privacy-conscious people will be familiar with the expression, “If it’s too good to be true, it’s…

Share: X : Get paid to scroll TikTok? The data trade behind Freecash adsFacebook : Get paid to scroll TikTok? The data trade behind Freecash adsLinkedin : Get paid to scroll TikTok? The data trade behind Freecash adsReddit : Get paid to scroll TikTok? The data trade behind Freecash adsTelegram : Get paid to scroll TikTok? The data trade behind Freecash adsWhatsApp : Get paid to scroll TikTok? The data trade behind Freecash adsEmail : Get paid to scroll TikTok? The data trade behind Freecash ads
An illustrated padlock is mounted into a microphone stand with sound waves emitting from the device.
26
Jan
2026

One privacy change I made for 2026 (Lock and Code S07E02)

This week on the Lock and Code podcast… When you hear the words “data privacy,” what do you first imagine?…

Share: X : One privacy change I made for 2026 (Lock and Code S07E02)Facebook : One privacy change I made for 2026 (Lock and Code S07E02)Linkedin : One privacy change I made for 2026 (Lock and Code S07E02)Reddit : One privacy change I made for 2026 (Lock and Code S07E02)Telegram : One privacy change I made for 2026 (Lock and Code S07E02)WhatsApp : One privacy change I made for 2026 (Lock and Code S07E02)Email : One privacy change I made for 2026 (Lock and Code S07E02)
week in security
26
Jan
2026

A week in security (January 19 – January 25)

Last week on Malwarebytes Labs: On the ThreatDown blog: Stay safe! We don’t just report on threats—we remove them Cybersecurity…

Share: X : A week in security (January 19 – January 25)Facebook : A week in security (January 19 – January 25)Linkedin : A week in security (January 19 – January 25)Reddit : A week in security (January 19 – January 25)Telegram : A week in security (January 19 – January 25)WhatsApp : A week in security (January 19 – January 25)Email : A week in security (January 19 – January 25)
Zendesk logo
23
Jan
2026

Spammers abuse Zendesk to flood inboxes with legitimate-looking emails, but why?

Short answer: we have no idea. People are actively complaining that their mailboxes and queues are being flooded by emails…

Share: X : Spammers abuse Zendesk to flood inboxes with legitimate-looking emails, but why?Facebook : Spammers abuse Zendesk to flood inboxes with legitimate-looking emails, but why?Linkedin : Spammers abuse Zendesk to flood inboxes with legitimate-looking emails, but why?Reddit : Spammers abuse Zendesk to flood inboxes with legitimate-looking emails, but why?Telegram : Spammers abuse Zendesk to flood inboxes with legitimate-looking emails, but why?WhatsApp : Spammers abuse Zendesk to flood inboxes with legitimate-looking emails, but why?Email : Spammers abuse Zendesk to flood inboxes with legitimate-looking emails, but why?
LastPass
22
Jan
2026

Fake LastPass maintenance emails target users

The LastPass Threat Intelligence, Mitigation, and Escalation (TIME) team has published a warning about an active phishing campaign in which…

Share: X : Fake LastPass maintenance emails target usersFacebook : Fake LastPass maintenance emails target usersLinkedin : Fake LastPass maintenance emails target usersReddit : Fake LastPass maintenance emails target usersTelegram : Fake LastPass maintenance emails target usersWhatsApp : Fake LastPass maintenance emails target usersEmail : Fake LastPass maintenance emails target users