A week in security (March 2 – 8)

A roundup of the previous week’s security headlines, including the introduction of a new series on child identity theft, an examination of law enforcement’s cybersecurity woes, a progress check on our stalkerware initiative, and more coronavirus scammers on the prowl.

Read more

Bring your own privacy: VPNs for consumers and orgs

VPNs are all the rage, but they’re not without their problems. Where do you stand on the great “Should we deploy a VPN” debate?

Read more

United States government-funded phones come pre-installed with unremovable malware

A US-funded government assistance program is selling budget-friendly mobile phones that come pre-installed with unremovable malicious apps. Malwarebytes Labs investigates the malware’s origins.

Read more

The little-known ways mobile device sensors can be exploited by cybercriminals

Mobile device sensors offer great utility to users—from taking pictures and commanding voice assistants to determining which direction to flip your screen. However, they harbor little-known vulnerabilities that could be exploited by crafty cybercriminals.

Read more

A week in security (November 4 – November 10)

A roundup of important security news from the week of November 4–10, including the release of Malwarebytes 4.0, vendor email compromise, fake news, robocalls, and more.

Read more

A week in security (September 9 – 15)

A roundup of the security news from September 9–15, including locking down AWS, mobile malware, phishing threats, and more.

Read more

Cellular networks under fire from Soft Cell attacks

We break down the recently revealed attacks on telco operators around the globe, targeting specific high-value individuals.

Read more

Mobile stalkerware: a long history of detection

Does Malwarebytes detect stalkerware? Absolutely, and for good reason. Moreover, we’ve been doing so for a long time—but it’s time to up our efforts.

Read more

WhatsApp fix goes live after targeted attack on human rights lawyer

A fix was rolled out for a WhatsApp vulnerability, which was used to inject spyware into mobile devices and target a human rights lawyer.

Read more

Fake Instagram assistance apps found on Google Play are stealing passwords

We all want those Instagram likes and followers. But what if the app that’s supposed to be assisting you is also stealing your username and password? As a matter of fact, that’s exactly what we found in three fake Instagram assistance apps found on Google Play.

Read more

Select your language