January 2026

Researchers found more sleeper browser extensions that spy on users and install backdoors, this time targeting Firefox users as well.

Last week on Malwarebytes Labs: Stay safe!

Researchers demonstrated WhisperPair, a set of attacks that can take control of many widely used Bluetooth earbuds and headphones without user interaction.

A fake ticket website that ended with a digital finger-wag showed just how many people still fall for concert and sports ticket scams.

Researchers uncovered a way to steal data from Microsoft Copilot users with a single malicious link.

Fake LinkedIn comments warning of account restrictions are designed to trick users into revealing their login details.

A Magecart campaign is skimming card data from online checkouts tied to major payment networks, including AmEx, Diners Club, and Mastercard.

Attackers use legitimate open-source software as cover, relying on user trust to compromise systems. We dive into an example.

A data broker was fined by California regulators for selling sensitive data on Alzheimer’s patients and millions of others.

Apple has confirmed active exploitation, but full protections are limited to iPhones running iOS 26+ (yes, the one with Liquid Glass).