Malwarebytes Labs – The Security Blog From Malwarebytes | Malwarebytes Labs Threat Intel A fake FileZilla site hosts a malicious download March 2, 2026 – A tampered copy of FileZilla quietly contacts attacker-controlled servers using encrypted DNS traffic that can slip past traditional monitoring. News Samsung TVs stop spying on viewers in Texas. Here’s how to disable ACR anywhere Scams Purchase order attachment isn’t a PDF. It’s phishing for your password AI Public Google API keys can be used to expose Gemini AI data News The Conduent breach; from 10 million to 25 million (and counting) PODCAST Podcast Our bi-weekly podcast of the latest security headlines and in-depth interviews with guests VIEW EPISODES AI AI If the robots are taking over, you'll want to know about it. READ MORE Data Breaches Data breaches Keep on top of the latest data breach news. READ MORE Threat Intelligence Threat Intel Stay up to date with the latest research and threat intelligence reports. READ MORE Instagram flagged explicit messages to minors in 2018. Image-blurring arrived six years later Danny Bradbury February 26, 2026 0 Comments Unsealed court records reveal Instagram executives discussed explicit messages to teens years before a blur feature was introduced. Developer creates app to detect nearby smart glasses Pieter Arntz February 25, 2026 0 Comments A developer created an Android app that looks for nearby smart glasses. It's not perfect, but it can help people in certian circumstances. Reddit, porn sites fined by UK regulators over children’s safety and privacy Pieter Arntz February 24, 2026 0 Comments Ofcom and the Information Commissioner's Office respectively fined a US porn company and Reddit for failing to protect children online. Roblox gives predators “powerful tools” to target children, says LA County Danny Bradbury February 24, 2026 0 Comments Los Angeles County sued the online gaming platform Roblox for its alleged failure to protect children from danger. Fake Zoom meeting “update” silently installs unauthorized version of monitoring tool abused by cybercriminals to spy on victims Stefan Dasic February 24, 2026 0 Comments A fake Zoom meeting page looks real, triggers a bogus “update,” and silently installs a legitimate commercial monitoring product. Refund scam impersonates Avast to harvest credit card details Stefan Dasic February 24, 2026 0 Comments A convincing fake Avast site displays a €499.99 charge and promises a refund. Instead, it harvests your name, address, and full credit card details. OpenClaw: What is it and can you use it safely? Pieter Arntz February 23, 2026 0 Comments OpenClaw is a hot topic at the moment. But what is it and how can you use the 24/7 AI assistant in a safe way? Password managers keep your passwords safe, unless… Pieter Arntz February 23, 2026 0 Comments Researchers investigated the zero-knowledge claims of password managers—and found some possible attack scenarios. Fake Huorong security site infects users with ValleyRAT Stefan Dasic February 23, 2026 0 Comments One extra letter in the domain is all it takes to hand over remote control of your system. Previous 1 2 3 4 … 606 Next Contributors Threat Center Podcast Glossary Scams
