Malwarebytes Cyber Security Software & Anti-Malware
- Meet Khaled Mohamed: the bug hunter who found a Microsoft flaw
on March 25, 2026 at 9:57 amWe talked to Khaled Mohamed on going from script kiddie to bug bounty hunter, and the moment he uncovered a flaw in Microsoft Authenticator.
- FBI, CISA warn of Russian hackers hijacking Signal and WhatsApp accounts
on March 24, 2026 at 1:39 pmThe FBI and CISA join European agencies in warning of a widespread, easily scalable social engineering campaign targeting messaging apps.
- Scam compounds hiring “AI models” to seal the deal in deepfake video callson March 24, 2026 at 12:18 pm
Forced labor doesnât play well on camera, so scam compounds are hiring women to deepfake their faces on video calls.
- FriendlyDealer mimics official app stores to push unvetted gambling apps
on March 23, 2026 at 3:41 pmThink youâre downloading from Google or Apple? 1,500+ fake app store sites look like the real thing, but push unvetted, cloned web-based casino apps.
- The March Madness scam playbookon March 23, 2026 at 3:19 pm
Fans aren’t the only ones who show up for March Madness. Here’s how to spot all the different scams that turn up to major sporting events.
- Advanced Flow will make Android sideloading safer
on March 23, 2026 at 12:42 pmGoogleâs new Advanced Flow aims to make sideloading safer on Android by slowing down scam-driven installs.
- A week in security (March 16 – March 22)on March 23, 2026 at 7:06 am
A list of topics we covered in the week of March 16 to March 22 of 2026
- This is all it takes to stop a train (Lock and Code S07E06)on March 22, 2026 at 10:02 pm
This week on the Lock and Code podcast, we speak with Rachel Swan about the simple network problems causing major train outages in the Bay.
- Could your face change what you pay? NYC wants limits on biometric trackingon March 20, 2026 at 1:39 pm
NYC lawmakers are pushing to rein in biometric tracking before it turns into real-world surveillance pricing and customer profiling.
- That âjob briefâ on Google Forms could infect your device
on March 20, 2026 at 11:38 amFake job offers on Google Forms are spreading PureHVNC malware that can take over your device.
- A DarkSword hangs over unpatched iPhoneson March 19, 2026 at 12:27 pm
Researchers have identified multiple state-level attacks using DarkSword, a chain of vulnerabilities, to infect unpatched iPhones.
- Your tax forms sell for $20 on the dark web
on March 19, 2026 at 11:33 amTax season is also peak season for identity theft. Malwarebytes researchers spotted criminals trading stolen tax records on dark web forums.
- Researchers found font-rendering trick to hide malicious commands
on March 18, 2026 at 5:16 pmResearchers found a way to trick AI assistants into missing dangerous user instructions on a website.
- Apple patches WebKit bug that could let sites access your data
on March 18, 2026 at 11:19 amApple has released a Background Security Improvement that silently fixes a WebKit vulnerability (CVE-2026-20643).
- Inside a network of 20,000+ fake shops
on March 18, 2026 at 8:51 amA sprawling network of fake shops, all built for one purpose: to steal your payment details and personal data.
- Fake Pudgy World site steals your crypto passwords
on March 17, 2026 at 4:10 pmThe phishing site it is not affiliated with Igloo Inc or Pudgy Penguins, but is designed to lure fans and steal their crypto passwords.
- 90% of people donât trust AI with their data
on March 17, 2026 at 12:26 pmAI may be everywhere, but according to our privacy survey, 90% say they donât trust it with their data, and many are pulling back.
- How searching for a VPN could mean handing over your work login detailson March 17, 2026 at 11:36 am
What looks like a legit VPN download could be a trap, as SEO poisoning is being used to steal corporate logins.
- Google cracks down on Android apps abusing accessibilityon March 17, 2026 at 9:59 am
Malware has been abusing Androidâs accessibility features for years. Google just made that a lot harder.
- Hacked sites deliver Vidar infostealer to Windows users
on March 16, 2026 at 5:15 pmWe found fake âverify you are humanâ pages on hacked WordPress sites that trick Windows users into installing the Vidar infostealer.
