Scams | Malwarebytes Blog

Personal
< Products
Device Protection & Antivirus
Premium Security Antivirus
Mobile Security for Android & iOS
Identity Protection
Identity Theft Protection
Personal Data Remover
Digital Footprint Scanner
Privacy Protection
Privacy VPN
Browser Guard
AdwCleaner
Have a current computer infection?
Free Virus Scan
Worried it’s a scam?
Free Scam Guard tool
Try our antivirus with a free, full-featured 14-day trial
Free Antivirus
Get your free digital security toolkit
Explore all free tools

Find the right cyberprotection for you
Compare plans and pricing
Business

< Business

Teams
Protect small & home offices – no IT expertise needed
ThreatDown
Award-winning endpoint security for small and medium businesses
Pricing

< Pricing

Personal pricing
Protect your personal devices and data
Small or home office pricing
Protect your team’s devices and data – no IT skills needed
Corporate pricing
Explore award-winning endpoint security for your business
Partners
Resources
< Resources
Security terms glossary
Threat Center
Blog – Cybersecurity News
About Malwarebytes
Press
Careers
Cybersecurity Resource Center
Antivirus
Malware
Phishing
Ransomware
Small business hub
See all articles
Help

< Support

Malwarebytes Help Center
Malwarebytes and Teams Customers
ThreatDown Business Support
Nebula and Oneview Customers
Community Forums

SCAMS

Fake CleanMyMac site downloads infostealer

Fake CleanMyMac site installs SHub Stealer and backdoors crypto wallets

March 6, 2026

We uncovered a fake CleanMyMac site delivering SHub Stealer, a macOS infostealer that steals credentials and silently backdoors crypto wallets.

It's a trap OAuth redirects

Attackers abuse OAuth’s built-in redirects to launch phishing and malware attacks

March 4, 2026

Researchers have found that attackers are abusing OAuth to send users from legitimate Microsoft or Google login pages to phishing sites or malware downloads.

Purchase order attachment isn’t a PDF. It’s phishing for your password

March 2, 2026

A fake purchase order attachment turned out to be a phishing page designed to harvest your login details.

Fake Zoom meeting “update” silently installs unauthorized version of monitoring tool abused by cybercriminals to spy on victims

February 24, 2026

A fake Zoom meeting page looks real, triggers a bogus “update,” and silently installs a legitimate commercial monitoring product.

Fake Avast phishing site

Refund scam impersonates Avast to harvest credit card details

February 24, 2026

A convincing fake Avast site displays a €499.99 charge and promises a refund. Instead, it harvests your name, address, and full credit card details.

Fake Huorong security site infects users with ValleyRAT

February 23, 2026

One extra letter in the domain is all it takes to hand over remote control of your system.

Facebook ads spread fake Windows 11 downloads that steal passwords and crypto wallets

February 20, 2026

Attackers are weaponizing Facebook ads to distribute password-stealing malware masked as a Windows download.

not every form is what it seems

Job scam uses fake Google Forms site to harvest Google logins

February 18, 2026

Phishers are using fake Google Forms pages hosted on lookalike domains to trick job seekers into handing over their Google credentials.

Fake Gemini crypto scam

Scammers use fake “Gemini” AI chatbot to sell fake “Google Coin”

February 18, 2026

An AI chatbot posing as Google’s Gemini is being used to pitch fake “Google Coin,” promising 7x returns.

Previous 1 2 3 4 … 102 Next