Threats | Malwarebytes Labs

Personal
< Products
Device Protection & Antivirus
Premium Security Antivirus
Mobile Security for Android & iOS
Identity Protection
Identity Theft Protection
Personal Data Remover
Digital Footprint Scanner
Privacy Protection
Privacy VPN
Browser Guard
AdwCleaner
Have a current computer infection?
Free Virus Scan
Worried it’s a scam?
Free Scam Guard tool
Try our antivirus with a free, full-featured 14-day trial
Free Antivirus
Get your free digital security toolkit
Explore all free tools

Find the right cyberprotection for you
Compare plans and pricing
Business

< Business

Teams
Protect small & home offices – no IT expertise needed
ThreatDown
Award-winning endpoint security for small and medium businesses
Pricing

< Pricing

Personal pricing
Protect your personal devices and data
Small or home office pricing
Protect your team’s devices and data – no IT skills needed
Corporate pricing
Explore award-winning endpoint security for your business
Partners
Resources
< Resources
Security terms glossary
Threat Center
Cybersecurity News
About Malwarebytes
Press
Careers
Cybersecurity Resource Center
Antivirus
Malware
Phishing
Ransomware
Small business hub
See all articles
Help

< Support

Malwarebytes Help Center
Malwarebytes and Teams Customers
ThreatDown Business Support
Nebula and Oneview Customers
Community Forums

THREATS

clipboard writing ClickFix

Fake CAPTCHA sites now have tutorial videos to help victims install malware

November 7, 2025

ClickFix campaign pages now have embedded videos to helpfully walk users through the process of infecting their own systems.

Image of wolf disguised as a sheep among a flock of sheep

Attack of the clones: Fake ChatGPT apps are everywhere

November 3, 2025

App stores are overflowing with AI lookalikes—some harmless copies, others hiding adware or even spyware.

sessionreaper at work

Thousands of online stores at risk as SessionReaper attacks spread

October 23, 2025

A Magento bug called SessionReaper is doing the rounds, and researchers warn it’s letting attackers hijack real shopping sessions.

spamware

Over 100 Chrome extensions break WhatsApp’s anti-spam rules

October 22, 2025

The add-ons abuse WhatsApp Web to blast bulk messages, sidestepping both Chrome’s extension policies and WhatsApp’s anti-spam rules.

pixnapping stealing while you sleep

Pixel-stealing “Pixnapping” attack targets Android devices

October 14, 2025

Imagine if a rogue app could glimpse tiny bits of your screen—even the parts you thought were secure, like your 2FA codes.

Image showing wolf in sheep's clothing

Fake Malwarebytes, LastPass, and others on GitHub serve malware

September 23, 2025

Fake software—including Malwarebytes and LastPass—is currently circulating on GitHub pages, in a large-scale campaign targeting Mac users.

Meta ignored child sex abuse in VR, say whistleblowers

September 11, 2025

Two former Meta employees accused it of downplaying the dangers of child abuse in its virtual reality "metaverse" environment.

A man facing away from the camera wearing a tin foil hat

No we didn’t warn all Gmail users about imminent digital doom, says Google

September 4, 2025

"This is entirely false" said Google about recent rumors of a widespread attack on Google users.

A hand reaches down to grab one asterisk from a written password.

Clickjack attack steals password managers’ secrets

August 22, 2025

A clickjack attack was revealed this summer that can steal the credentials from password managers that are integrated into web browsers.

Previous 1 2 3 4 … 64 Next