Malwarebytes Labs – The Security Blog From Malwarebytes | Malwarebytes Labs AI “Reprompt” attack lets attackers steal data from Microsoft Copilot January 15, 2026 – Researchers uncovered a way to steal data from Microsoft Copilot users with a single malicious link. News Online shoppers at risk as Magecart skimming hits major payment networks News Phishing scammers are posting fake “account restricted” comments on LinkedIn News Received an Instagram password reset email? Here’s what you need to know News Dutch police sell fake tickets to show how easily scams work Threat Intelligence Threat Intel Stay up to date with the latest research and threat intelligence reports. READ MORE BUSINESS BLOG Business Discover the tools, insights, and advice you need to protect your organization. EXPLORE PERSONAL BLOG Personal Get the security news and tips to help you and your family stay safe. EXPLORE PODCAST Podcast Our bi-weekly podcast of the latest security headlines and in-depth interviews with guests VIEW EPISODES Dutch police sell fake tickets to show how easily scams work Danny Bradbury January 16, 2026 0 Comments A fake ticket website that ended with a digital finger-wag showed just how many people still fall for concert and sports ticket scams. “Reprompt” attack lets attackers steal data from Microsoft Copilot Pieter Arntz January 15, 2026 0 Comments Researchers uncovered a way to steal data from Microsoft Copilot users with a single malicious link. Phishing scammers are posting fake “account restricted” comments on LinkedIn Pieter Arntz January 14, 2026 0 Comments Fake LinkedIn comments warning of account restrictions are designed to trick users into revealing their login details. Online shoppers at risk as Magecart skimming hits major payment networks Pieter Arntz January 14, 2026 0 Comments A Magecart campaign is skimming card data from online checkouts tied to major payment networks, including AmEx, Diners Club, and Mastercard. How real software downloads can hide remote backdoors Stefan Dasic January 14, 2026 0 Comments Attackers use legitimate open-source software as cover, relying on user trust to compromise systems. We dive into an example. Data broker fined after selling Alzheimer’s patient info and millions of sensitive profiles Danny Bradbury January 13, 2026 0 Comments A data broker was fined by California regulators for selling sensitive data on Alzheimer’s patients and millions of others. Why iPhone users should update and restart their devices now Pieter Arntz January 13, 2026 0 Comments Apple has confirmed active exploitation, but full protections are limited to iPhones running iOS 26+ (yes, the one with Liquid Glass). Received an Instagram password reset email? Here’s what you need to know Pieter Arntz January 12, 2026 0 Comments Instagram users received emails last week about purported password reset attempts. At the same time, Instagram data appeared on the dark web. Regulators around the world are scrutinizing Grok over sexual deepfakes Pieter Arntz January 12, 2026 0 Comments Grok’s apology is unlikely to be the end of the story after the AI tool was used to generate content that may constitute illegal child sexual abuse material. 1 2 3 … 596 Next Contributors Threat Center Podcast Glossary Scams
