Malwarebytes Labs – The Security Blog From Malwarebytes | Malwarebytes Labs Privacy 90% of people don’t trust AI with their data March 17, 2026 – AI may be everywhere, but according to our privacy survey, 90% say they don’t trust it with their data, and many are pulling back. Scams Inside a network of 20,000+ fake shops Scams Fake Pudgy World site steals your crypto passwords News How searching for a VPN could mean handing over your work login details Mobile Google cracks down on Android apps abusing accessibility PODCAST Podcast Our bi-weekly podcast of the latest security headlines and in-depth interviews with guests VIEW EPISODES AI AI If the robots are taking over, you'll want to know about it. READ MORE Data Breaches Data breaches Keep on top of the latest data breach news. READ MORE Threat Intelligence Threat Intel Stay up to date with the latest research and threat intelligence reports. READ MORE Researchers found font-rendering trick to hide malicious commands Pieter Arntz March 18, 2026 0 Comments Researchers found a way to trick AI assistants into missing dangerous user instructions on a website. Apple patches WebKit bug that could let sites access your data Pieter Arntz March 18, 2026 0 Comments Apple has released a Background Security Improvement that silently fixes a WebKit vulnerability (CVE-2026-20643). Inside a network of 20,000+ fake shops Stefan Dasic March 18, 2026 0 Comments A sprawling network of fake shops, all built for one purpose: to steal your payment details and personal data. Fake Pudgy World site steals your crypto passwords Stefan Dasic March 17, 2026 0 Comments The phishing site it is not affiliated with Igloo Inc or Pudgy Penguins, but is designed to lure fans and steal their crypto passwords. 90% of people don’t trust AI with their data Malwarebytes Labs March 17, 2026 0 Comments AI may be everywhere, but according to our privacy survey, 90% say they don’t trust it with their data, and many are pulling back. How searching for a VPN could mean handing over your work login details Pieter Arntz March 17, 2026 0 Comments What looks like a legit VPN download could be a trap, as SEO poisoning is being used to steal corporate logins. Google cracks down on Android apps abusing accessibility Danny Bradbury March 17, 2026 0 Comments Malware has been abusing Android’s accessibility features for years. Google just made that a lot harder. Hacked sites deliver Vidar infostealer to Windows users Gabriele Orini March 16, 2026 0 Comments We found fake “verify you are human” pages on hacked WordPress sites that trick Windows users into installing the Vidar infostealer. Zombie ZIP method can fool antivirus during the first scan Pieter Arntz March 16, 2026 0 Comments Researchers published about the Zombie ZIP vulnerability (or not a vulnerability, that's up for debate) that can bypass a first AV inspection. 1 2 3 … 610 Next Contributors Threat Center Podcast Glossary Scams
