We research. You level up.
Protect your devices, your data, and your privacy—at home or on the go.
"Thanks to the Malwarebytes MSP program, we have this high-quality product in our stack. It’s a great addition, and I have confidence that customers’ systems are protected."
Featured Event: RSA 2021
Activate Malwarebytes Privacy on Windows device.
New business customers save 15% on powerful, easy-to-use EDR – See Offer >
Check out our MITRE ATT&CK Top performance! View Results >
Threat spotlight
Meet Exotic Lily, access broker for ransomware and other malware peddlers
March 18, 2022 - Exotic Lily is the name given to a group of cybercriminals that specialized as an initial access broker, serving groups like Conti and Diavol ransomware.
Read more
Cyclops Blink malware: US and UK authorities issue alert
February 24, 2022 - US and UK authorities have attributed the newly found malware Cyclops Blink to the Russian state-sponsored Sandworm group.
Ransomware | Threat spotlight
Threat spotlight: Conti, the ransomware used in the HSE healthcare attack
May 28, 2021 - Conti ransomware has caught the world’s attention after being used in attacks against Ireland's public healthcare system.
PYSA, the ransomware attacking schools
March 30, 2021 - PYSA is big game ransomware that's been used in targeted attacks against large private organizations, healthcare, and most recently, the education sector.
HelloKitty: When Cyberpunk met cy-purr-crime
March 18, 2021 - HelloKitty was a relatively unheard-of ransomware family—until it became involved in an attack against the Polish video game developer, CD Projekt Red, in early February.
Threat profile: Egregor ransomware is making a name for itself
December 15, 2020 - The Egregror ransomware is quickly making a name for itself by victimizing big corporations. How does it work and what is its background?
Threat spotlight: WastedLocker, customized ransomware
July 10, 2020 - WastedLocker ransomware, attributed to the Russian Evil Corp gang, is such a targeted threat, you might call it a custom-built ransomware family.
Search hijackers change Chrome policy to remote administration
June 11, 2020 - Search hijackers are always looking for ways to get and stay installed. Here is one that changed a Chrome policy and set it to remote administration.
Maze: the ransomware that introduced an extra twist
May 29, 2020 - Maze ransomware attacks featured the first group of cyber-criminals to add the threat of publishing exfiltrated data to the ransomware business model
Contributors
Threat Center
Podcast
Glossary
Scams
Write for Labs
Select your language
Cybersecurity basics
Your intro to everything relating to cyberthreats, and how to stop them.