Last week on Malwarebytes Labs: * This old-school scam is still working * "Your shipment has arrived" email hides remote access software * B...
When we read about this new malware tactic, or that novel social engineering approach, it’s easy to forget that there are scammers out there making...
An attachment in an email impersonating DHL about a shipment contains a link to a preconfigured SimpleHelp remote access tool—an ideal starting poi...
A few months ago, we reported on a fake cloud storage alert that triggered a redirect chain to an app that has since been delisted from the Apple S...
Have you ever been on a website when a pop-up suddenly asked for access to your camera, microphone, location, or notifications? Whether you clicked...
Travel companies love telling you your data is safe. Booking.com just reminded everyone why that's a hard promise to keep. The Amsterdam-based boo...
A trojanized Slack download from a typosquatting website is giving attackers something most users wouldn’t even know to look for: a hidden desktop ...
Pushpaganda is the name researchers have given to an AI-assisted ad fraud, social engineering, and scareware operation targeting mobile users. For...
A convincing phishing campaign is going after YouTube creators, and if it works, attackers don't just steal your Google login. They can take over y...
We’ve uncovered multiple campaigns distributing an infostealer we track as **NWHStealer** , using everything from fake VPN downloads to hardware ut...
AI-powered asset discovery, dark web monitoring, CVE alerting, and vulnerability scanning — all in one platform.
