Threat center

Malwarebytes Labs Threat Center

Profiles of our top threat, PUP, IP, and domain detections

Explore

Glossary

Technical glossary

Definitions and abbreviations of technical terms, including product names, cyberthreats, and technologies

Explore

Scams

Tech support scams help and resource page

How to identify and report technical support scams

Read more

Reports

Cybercrime tactics and techniques: ransomware retrospective

Ransomware is back in a big way in Q2 2019, targeting businesses with brute force.

Read more
Ransomware continues assault against cities and businesses - We take a look at the current chaos faced by local governments across the US, as ransomware continues to snap at its cities' heels.

Ransomware

Ransomware continues assault against cities and businesses

August 23, 2019 - We take a look at the current chaos faced by local governments across the US, as ransomware continues to snap at its cities' heels.

Read more
The lucrative business of Bitcoin sextortion scams - Sextortion scams are back on the radar, and many say they’re on the uptick. We investigate an email campaign to see how lucrative the business of sextortion can be.

Scams

The lucrative business of Bitcoin sextortion scams

August 22, 2019 - Sextortion scams are back on the radar, and many say they’re on the uptick. We investigate an email campaign to see how lucrative the business of sextortion can be.

Read more
Bluetooth vulnerability can be exploited in Key Negotiation of Bluetooth (KNOB) attacks - Researchers called it KNOB, a clever attack against the firmware of a Bluetooth chip that can allow hackers to successfully hijack paired devices and steal their sensitive data. Are users at risk?

Awareness

Bluetooth vulnerability can be exploited in Key Negotiation of Bluetooth (KNOB) attacks

August 21, 2019 - Researchers called it KNOB, a clever attack against the firmware of a Bluetooth chip that can allow hackers to successfully hijack paired devices and steal their sensitive data. Are users at risk?

Read more
DEF CON 27 retrospective: badge life redux - Learn about one of our researcher's badge experiences at DEF CON 27.

Researcher's corner

DEF CON 27 retrospective: badge life redux

August 20, 2019 - Learn about one of our researcher's badge experiences at DEF CON 27.

Read more
Magecart criminals caught stealing with their poker face on - This blog post details the curious case of a web skimmer encountered in a poker application.

Threat analysis

Magecart criminals caught stealing with their poker face on

August 20, 2019 - This blog post details the curious case of a web skimmer encountered in a poker application.

Read more
A week in security (August 12 – 18) - A roundup of the most interesting cybersecurity news stories from August 12 to 18, including a deep dive into facial recognition technology, swatting dangers, social engineering attacks on cities, and more.

A week in security

A week in security (August 12 – 18)

August 19, 2019 - A roundup of the most interesting cybersecurity news stories from August 12 to 18, including a deep dive into facial recognition technology, swatting dangers, social engineering attacks on cities, and more.

Read more
How much personalization is too much? - Personalization is the new mantra of marketers—and most people are perfectly okay with that. But when does personalization cross the line into invasive? And what can uncomfortable consumers do about blocking it?

Privacy

How much personalization is too much?

August 19, 2019 - Personalization is the new mantra of marketers—and most people are perfectly okay with that. But when does personalization cross the line into invasive? And what can uncomfortable consumers do about blocking it?

Read more
QxSearch hijacker fakes failed installs - QxSearch is a group of search hijackers that try to make the user think the install failed or was incomplete. Is it that they don't want to be found and removed? Or just bad programming?

PUPs

QxSearch hijacker fakes failed installs

August 16, 2019 - QxSearch is a group of search hijackers that try to make the user think the install failed or was incomplete. Is it that they don't want to be found and removed? Or just bad programming?

Read more
The Hidden Bee infection chain, part 1: the stegano pack - The Hidden Bee cryptominer has a complex and multi-layered internal structure that is unusual among cybercrime toolkits. That's why we're dedicating a series of posts to exploring its elements and updates made during one year of its evolution.

Threat analysis

The Hidden Bee infection chain, part 1: the stegano pack

August 15, 2019 - The Hidden Bee cryptominer has a complex and multi-layered internal structure that is unusual among cybercrime toolkits. That's why we're dedicating a series of posts to exploring its elements and updates made during one year of its evolution.

Read more

Select your language