Bugs | Malwarebytes Blog

Personal
< Products
Device Protection & Antivirus
Premium Security Antivirus
Mobile Security for Android & iOS
Identity Protection
Identity Theft Protection
Personal Data Remover
Digital Footprint Scanner
Privacy Protection
Privacy VPN
Browser Guard
AdwCleaner
Have a current computer infection?
Free Virus Scan
Worried it’s a scam?
Free Scam Guard tool
Try our antivirus with a free, full-featured 14-day trial
Free Antivirus
Get your free digital security toolkit
Explore all free tools

Find the right cyberprotection for you
Compare plans and pricing
Business

< Business

Teams
Protect small & home offices – no IT expertise needed
ThreatDown
Award-winning endpoint security for small and medium businesses
Pricing

< Pricing

Personal pricing
Protect your personal devices and data
Small or home office pricing
Protect your team’s devices and data – no IT skills needed
Corporate pricing
Explore award-winning endpoint security for your business
Partners
Resources
< Resources
Security terms glossary
Threat Center
Cybersecurity News
About Malwarebytes
Press
Careers
Cybersecurity Resource Center
Antivirus
Malware
Phishing
Ransomware
Small business hub
See all articles
Help

< Support

Malwarebytes Help Center
Malwarebytes and Teams Customers
ThreatDown Business Support
Nebula and Oneview Customers
Community Forums

BUGS

patched Apple

Apple patches zero-day flaw that could let attackers take control of devices

February 12, 2026

Apple issued security updates for all devices which include a patch for an actively exploited zero-day—tracked as CVE-2026-20700.

Microsoft

February 2026 Patch Tuesday includes six actively exploited zero-days

February 11, 2026

Microsoft’s February Patch Tuesday fixes 59 flaws—including six zero-days already under active attack. How bad are they?

chat AI data exposed

AI chat app leak exposes 300 million messages tied to 25 million users

February 9, 2026

A security researcher found an exposed database belonging to the Chat & Ask AI app, once again traced back to a Firebase misconfiguration.

Office apps offer connected experiences

Microsoft Office zero-day lets malicious documents slip past security checks

January 29, 2026

Microsoft issued an emergency patch for a flaw attackers are using to slip malicious code past Office’s document security checks.

A WhatsApp bug lets malicious media files spread through group chats

January 27, 2026

Google’s Project Zero team found that WhatsApp can download a malicious media file without you doing anything at all.

earbuds

WhisperPair exposes Bluetooth earbuds and headphones to tracking and eavesdropping

January 16, 2026

Researchers demonstrated WhisperPair, a set of attacks that can take control of many widely used Bluetooth earbuds and headphones without user interaction.

Microsoft Copilot

“Reprompt” attack lets attackers steal data from Microsoft Copilot

January 15, 2026

Researchers uncovered a way to steal data from Microsoft Copilot users with a single malicious link.

liquid glass security fix

Why iPhone users should update and restart their devices now

January 13, 2026

Apple has confirmed active exploitation, but full protections are limited to iPhones running iOS 26+ (yes, the one with Liquid Glass).

HPE and Powerpoint logos

CISA warns of active attacks on HPE OneView and legacy PowerPoint

January 8, 2026

Two actively exploited flaws—one brand new, one 16 years old—have been added to CISA’s KEV catalog, signaling urgent patching.

1 2 3 … 49 Next