We research. You level up.
Protect your devices, your data, and your privacy—at home or on the go.
"Thanks to the Malwarebytes MSP program, we have this high-quality product in our stack. It’s a great addition, and I have confidence that customers’ systems are protected."
Featured Event: RSA 2021
Activate Malwarebytes Privacy on Windows device.
Cybersecurity Month: Save 25% on EP and EDR for your business - BUY NOW
Adblocker promises to blocks ads, injects them instead
October 14, 2021 - Researchers uncovered an ad injection campaign based on browser extensions that promise to block advertisements. And they do.
Cryptomining containers caught coining cryptocurrency covertly
April 9, 2021 - Research has uncovered 30 compromised images in 10 different Docker Hub accounts, representing over 20 million pulls.
Please don't buy this | Web threats
Scammers, profiteers, and shady sites? It must be tax season
February 25, 2021 - With tax season around the corner, an aggressive campaign caught our attention and we decided to investigate.
Exploits and vulnerabilities | Web threats
Brute force attacks increase due to more open RDP ports
October 20, 2020 - More open ports are inviting attackers to try and gain entry by using brute force attacks. Why is this happening and what can we do?
Threat Intelligence | Web threats
Mobile network operator falls into the hands of Fullz House criminal group
October 5, 2020 - The Fullz House threat group has struck again, this time inserting a credit card skimmer into a mobile phone operator and seller.
New web skimmer steals credit card data, sends to crooks via Telegram
September 1, 2020 - Criminals steal payment data from online shoppers by abusing the Telegram instant messaging API, inserting credit card skimming code.
6 ways hackers are targeting retail businesses
January 8, 2020 - Whether it's a high-volume shopping season or not, retail businesses are at risk from cybercriminals in a number of ways. Learn how hackers target retailers and shoppers alike.
There’s an app for that: web skimmers found on PaaS Heroku
December 4, 2019 - Cybercriminals are abusing platform-as-a-service (PaaS) cloud provider Heroku to build web skimming apps and steal customer data.
Web skimmer phishes credit card data via rogue payment service platform
November 21, 2019 - Threat actors combine phishing with a web skimmer to create a devious scheme designed to lift credit card data from unaware shoppers.
Write for Labs
Select your language
Your intro to everything relating to cyberthreats, and how to stop them.