News | Malwarebytes Blog

Personal
< Products
Device Protection & Antivirus
Premium Security Antivirus
Mobile Security for Android & iOS
Identity Protection
Identity Theft Protection
Personal Data Remover
Digital Footprint Scanner
Privacy Protection
Privacy VPN
Browser Guard
AdwCleaner
Have a current computer infection?
Free Virus Scan
Worried it’s a scam?
Free Scam Guard tool
Try our antivirus with a free, full-featured 14-day trial
Free Antivirus
Get your free digital security toolkit
Explore all free tools

Find the right cyberprotection for you
Compare plans and pricing
Business

< Business

Teams
Protect small & home offices – no IT expertise needed
ThreatDown
Award-winning endpoint security for small and medium businesses
Pricing

< Pricing

Personal pricing
Protect your personal devices and data
Small or home office pricing
Protect your team’s devices and data – no IT skills needed
Corporate pricing
Explore award-winning endpoint security for your business
Partners
Resources
< Resources
Security terms glossary
Threat Center
Blog – Cybersecurity News
About Malwarebytes
Press
Careers
Cybersecurity Resource Center
Antivirus
Malware
Phishing
Ransomware
Small business hub
See all articles
Help

< Support

Malwarebytes Help Center
Malwarebytes and Teams Customers
ThreatDown Business Support
Nebula and Oneview Customers
Community Forums

NEWS

Apple expands “DarkSword” patches to iOS 18.7.7

April 2, 2026

Apple has quietly expanded patches against the vulnerabilities in the DarkSword exploit kit to include iOS and iPadOS 18.7.7

WhatsApp on Windows users targeted in new campaign, warns Microsoft

April 1, 2026

Microsoft warns WhatsApp on Windows users about an ongoing campaign that tries to gain permanent access to your machine

Axios supply chain attack chops away at npm trust

March 31, 2026

Developers using the axios package from npm may have downloaded a malicous version that drops a Remote Access Trojan

mac extra clickfix protection

New macOS security feature will alert users about possible ClickFix attacks

March 30, 2026

Apple introduced an extra layer of protection against ClickFix attacks, only for macOS Tahoe 26.4 and later

week in security

A week in security (March 23 – March 29)

March 30, 2026

A list of topics we covered in the week of March 23 to March 29 of 2026

cloud phone with a mask

Criminals are renting virtual phones to bypass bank security

March 27, 2026

Not a real phone, but good enough to fool your bank. Researchers warn criminals are using virtual devices to bypass fraud checks.

Trojanized Avast delivers Venom Stealer

Bogus Avast website fakes virus scan, installs Venom Stealer instead

March 27, 2026

A fake Avast scan tells you your PC is infected, then installs the malware that steals passwords, session data and crypto wallets.

Infiniti Stealer: a new macOS infostealer using ClickFix and Python/Nuitka

March 26, 2026

A new macOS infostealer, NukeChain (now Infiniti Stealer), uses fake CAPTCHA pages to trick users into running malicious commands.

GlassWorm identified

GlassWorm attack installs fake browser extension for surveillance

March 26, 2026

It hides inside developer tools, then monitors activity and steals data, turning a single infection into a wider risk across the supply chain.

1 2 3 … 567 Next