Malwarebytes Cyber Security Software & Anti-Malware
- Fake 7-Zip downloads are turning home PCs into proxy nodes
on February 9, 2026 at 10:51 amA convincing lookalike of the popular 7-Zip archiver site has been silently turning victimsâ machines into residential proxy nodes.
- A week in security (February 2 – February 8)on February 9, 2026 at 8:01 am
A list of topics we covered in the week of February 2 to February 8 of 2026
- Apple Pay phish uses fake support calls to steal payment details
on February 6, 2026 at 2:43 pmThis Apple Pay phishing campaign is designed to funnel victims into fake Apple Support calls, where scammers steal payment details.
- Open the wrong âPDFâ and attackers gain remote access to your PCon February 5, 2026 at 1:48 pm
The DEAD#VAX campaign tricks users into installing AsyncRAT by disguising a virtual hard disk as a PDF attachment.
- Flock cameras shared license plate data without permissionon February 5, 2026 at 11:24 am
A California city pulled the plug on its entire ALPR system when it found Flock had shared data with hundreds of agencies without permission.
- Grok continues producing sexualized images after promised fixeson February 4, 2026 at 1:50 pm
Journalists retested Grok and found it still generates offensive images even when told the subjects were vulnerable, non-consenting people.
- Firefox is giving users the AI off switch
on February 4, 2026 at 12:07 pmMozilla and other companies are starting to see why giving users a choice over AI features matters.
- An AI plush toy exposed thousands of private chats with childrenon February 3, 2026 at 4:55 pm
Around 50,000 chat transcripts between children and Bonduâs AI dinosaur plushie were accessible to anyone with a Google account.
- AT&T breach data resurfaces with new risks for customerson February 3, 2026 at 11:48 am
As leaked datasets are merged and enriched, they become more useful to criminals. That makes recycled breach data a bigger risk for customers.
- Appleâs new iOS setting addresses a hidden layer of location trackingon February 3, 2026 at 11:20 am
Apple has introduced Limit Precise Location, a new setting that reduces how precisely cellular networks can locate your device, though support is currently limited.
- [updated] A fake cloud storage alert that ends at Freecash
on February 3, 2026 at 10:38 amWe followed a fake cloud storage payment alert through deceptive affiliate redirects, ending at a familiar destination: Freecash.
- How Manifest v3 forced us to rethink Browser Guard, and why thatâs a good thingÂ
on February 2, 2026 at 6:11 pmBrowser Guard still blocks scams and phishing like it always has. But we had to rebuild the way it does that from the ground up.
- Scam-checking just got easier: Malwarebytes is now in ChatGPTÂon February 2, 2026 at 1:45 pm
Malwarebytes’ ChatGPT integration makes it the first cybersecurity provider that can deliver its expertise without ever leaving the chat
- How fake party invitations are being used to install remote access tools
on February 2, 2026 at 10:18 amFake party invitations are used to install remote access tools, so the criminals are the ones invited.
- A week in security (January 26 – February 1)on February 2, 2026 at 8:02 am
A list of topics we covered in the week of January 26 to February 1 of 2026
- Match, Hinge, OkCupid, and Panera Bread breached by ransomware group
on January 30, 2026 at 2:23 pmShinyHunters claims to have stolen millions of records from Match Group dating apps and Panera Bread, with very different consequences for users.
- TikTokâs privacy update mentions immigration status. Hereâs why.on January 30, 2026 at 11:48 am
TikTok updated its privacy policy to mention immigration status, sparking backlashâbut the reality is more complicated.
- Meta confirms itâs working on premium subscription for its apps
on January 29, 2026 at 9:06 pmDetails are currently thin, but one thing is clear: paying more is unlikely to buy users meaningful privacy or less tracking.
- Microsoft Office zero-day lets malicious documents slip past security checks
on January 29, 2026 at 2:53 pmMicrosoft issued an emergency patch for a flaw attackers are using to slip malicious code past Officeâs document security checks.
- Clawdbotâs rename to Moltbot sparks impersonation campaign
on January 29, 2026 at 2:26 pmThis Moltbot impersonation campaign is a case study in supply-chain risk, brand hijacking, and what happens when open source goes viral.
