Malwarebytes Labs – The Security Blog From Malwarebytes | Malwarebytes Labs News New macOS security feature will alert users about possible ClickFix attacks March 30, 2026 – Apple introduced an extra layer of protection against ClickFix attacks, only for macOS Tahoe 26.4 and later News Bogus Avast website fakes virus scan, installs Venom Stealer instead Mobile Criminals are renting virtual phones to bypass bank security News Infiniti Stealer: a new macOS infostealer using ClickFix and Python/Nuitka News New FCC router ban could leave home networks less secure PODCAST Podcast Our bi-weekly podcast of the latest security headlines and in-depth interviews with guests VIEW EPISODES AI AI If the robots are taking over, you'll want to know about it. READ MORE Data Breaches Data breaches Keep on top of the latest data breach news. READ MORE Threat Intelligence Threat Intel Stay up to date with the latest research and threat intelligence reports. READ MORE New macOS security feature will alert users about possible ClickFix attacks Pieter Arntz March 30, 2026 0 Comments Apple introduced an extra layer of protection against ClickFix attacks, only for macOS Tahoe 26.4 and later A week in security (March 23 – March 29) Malwarebytes Labs March 30, 2026 0 Comments A list of topics we covered in the week of March 23 to March 29 of 2026 Criminals are renting virtual phones to bypass bank security Pieter Arntz March 27, 2026 0 Comments Not a real phone, but good enough to fool your bank. Researchers warn criminals are using virtual devices to bypass fraud checks. Bogus Avast website fakes virus scan, installs Venom Stealer instead Stefan Dasic March 27, 2026 0 Comments A fake Avast scan tells you your PC is infected, then installs the malware that steals passwords, session data and crypto wallets. Infiniti Stealer: a new macOS infostealer using ClickFix and Python/Nuitka Stefan Dasic March 26, 2026 0 Comments A new macOS infostealer, NukeChain (now Infiniti Stealer), uses fake CAPTCHA pages to trick users into running malicious commands. GlassWorm attack installs fake browser extension for surveillance Pieter Arntz March 26, 2026 0 Comments It hides inside developer tools, then monitors activity and steals data, turning a single infection into a wider risk across the supply chain. Landmark verdicts put Meta’s “addiction machine” platforms on trial Danny Bradbury March 26, 2026 0 Comments Courts are starting to question how platforms are built, not just what’s posted. Hackers claim to have accessed data tied to millions of crime tipsters Pieter Arntz March 25, 2026 0 Comments A hacktivist group claims to have obtained sensitive data on crime tipsters and the people they reported, dating back to 1987. New FCC router ban could leave home networks less secure Pieter Arntz March 25, 2026 0 Comments The FCC announced a ban on routers made outside the US, but it could backfire. Here’s the real risk, and what you can do about it. 1 2 3 … 613 Next Contributors Threat Center Podcast Glossary Scams
