THREAT INTEL

Latest news

remove calendar spam

Watch out for fake Malwarebytes renewal notices in your calendar

March 13, 2026

Scammers are sending fake calendar “renewal” notices impersonating Malwarebytes to trick victims into calling a fake billing number.

Fake Temu Coin

Attackers impersonate Temu in ClickFix $Temu airdrop scam

March 13, 2026

A fake $TEMU crypto airdrop uses the ClickFix trick to make victims run malware themselves and quietly installs a remote-access backdoor.

United Healthcare Oral-B

Phishers hide scam links with IPv6 trick in “free toothbrush” emails

March 11, 2026

United Healthcare impersonators are using an IPv6 trick to hide the real destination of phishing links in emails promising free Oral-B toothbrushes.

How to protect everything

Facebook ads spread fake Windows 11 downloads that steal passwords and crypto wallets

Scammers use fake “Gemini” AI chatbot to sell fake “Google Coin” 

Outlook add-in goes rogue and steals 4,000 credentials and payment data

“Poseidon” Mac stealer distributed via Google ads

Listen to the

Lock & Code podcast

See all past episodes

remote login gotoresolve

How attackers use real IT tools to take over your computer

Camouflage

How real software downloads can hide remote backdoors 

Malwarebytes has a security solution to fit your needs

Premium Security

Shield your devices from hackers, scammers, and more with our award-winning antivirus and web protection.

Tax season robocalls

Watch out for tax-season robocalls pushing fake “relief programs”

March 11, 2026

Scammers are targeting Americans with robocalls during tax season. Here’s how to spot the scam.

man taking online quiz on laptop

Quiz sites trick users into enabling unwanted browser notifications

March 9, 2026

The quiz is just bait. The real goal is to win permission to send browser notifications that can later be used for ads, scams, or shady promotions.

Google Meet logo on a dark background

One click on this fake Google Meet update can give attackers control of your PC

March 6, 2026

We found a fake Google Meet update that enrolls the victim's Windows PC in an attacker's device management system.

Fake CleanMyMac site downloads infostealer

Fake CleanMyMac site installs SHub Stealer and backdoors crypto wallets

March 6, 2026

We uncovered a fake CleanMyMac site delivering SHub Stealer, a macOS infostealer that steals credentials and silently backdoors crypto wallets.

Trojanized FileZilla

A fake FileZilla site hosts a malicious download

March 2, 2026

A tampered copy of FileZilla quietly contacts attacker-controlled servers using encrypted DNS traffic that can slip past traditional monitoring.

Purchase order attachment isn’t a PDF. It’s phishing for your password

March 2, 2026

A fake purchase order attachment turned out to be a phishing page designed to harvest your login details.