_This week on the Lock and Code podcast …_ When you hear the words "data privacy," what do you first imagine? Maybe you picture going into your s...
Last week on Malwarebytes Labs: * Spammers abuse Zendesk to flood inboxes with legitimate-looking emails, but why? * Fake LastPass maintenance...
Recently, our team came across an infection attempt that stood out—not for its sophistication, but for how determined the attacker was to take a “l...
Researchers found a way to weaponize calendar invites. They uncovered a vulnerability that allowed them to bypass Google Calendar’s privacy control...
Researchers have found another method used in the spirit of ClickFix: **CrashFix**. ClickFix campaigns use convincing lures—historically “Human Ve...
Google has settled yet another class-action lawsuit accusing it of collecting children’s data and using it to target them with advertising. The tec...
A group of cybercriminals called DarkSpectre is believed to be behind three campaigns spread by malicious browser extensions: ShadyPanda, GhostPost...
Last week on Malwarebytes Labs: * WhisperPair exposes Bluetooth earbuds and headphones to tracking and eavesdropping * Dutch police sell fake ...
WhisperPair is a set of attacks that lets an attacker hijack many popular Bluetooth audio accessories that use Google Fast Pair and, in some cases,...
If you can’t beat them, copy them. That seems to be the thinking behind an unusual campaign by the Dutch police, who set up a fake ticket website s...
AI-powered asset discovery, dark web monitoring, CVE alerting, and vulnerability scanning — all in one platform.
