Malwarebytes Labs – The Security Blog From Malwarebytes | Malwarebytes Labs News Malware steals Chrome session cookies to take over your accounts June 26, 2026 – A phishing campaign installs a malicious Chrome extension to hijack browser sessions and compromise Windows devices. Scams Beware of “Parcel Expert” job offers: They’re parcel mule scams Bugs Update Chrome to patch critical browser security flaws Scams Fake domain renewal emails trick website owners into paying scammers Scams “Total access to all your devices.” Sextortion scammers strike again PODCAST Podcast Our bi-weekly podcast of the latest security headlines and in-depth interviews with guests VIEW EPISODES AI AI If the robots are taking over, you'll want to know about it. READ MORE Data Breaches Data breaches Keep on top of the latest data breach news. READ MORE Threat Intelligence Threat Intel Stay up to date with the latest research and threat intelligence reports. READ MORE This pay gap is programmed (Lock and Code S07E13) Malwarebytes Labs June 29, 2026 0 Comments This week on the Lock and Code podcast, we speak with Veena Dubal about algorithmic wage discrimination and its appetite for all worker data. 119 Edge extensions promised useful tools, instead downloaded malware Pieter Arntz June 29, 2026 0 Comments Microsoft has removed over 100 Edge extensions that were delivering malware hidden in images. A week in security (June 22 – June 28) Malwarebytes Labs June 29, 2026 0 Comments A list of topics we covered in the week of June 22 to June 28 of 2026 Malware steals Chrome session cookies to take over your accounts Pieter Arntz June 26, 2026 0 Comments A phishing campaign installs a malicious Chrome extension to hijack browser sessions and compromise Windows devices. Beware of “Parcel Expert” job offers: They’re parcel mule scams Pieter Arntz June 25, 2026 0 Comments Most parcel mule scams start with fake job offers that trick victims into handling stolen goods. Update Chrome to patch critical browser security flaws Pieter Arntz June 25, 2026 0 Comments Chrome has patched 18 vulnerabilities, including four critical flaws. Two WebGL bugs could allow attackers to escape the browser's security sandbox. Fake domain renewal emails trick website owners into paying scammers Stefan Dasic June 25, 2026 0 Comments We uncovered fake domain renewal notices and convincing websites to pressure website owners into paying scammers. Elite network says it was hacked after members’ personal data was left exposed Danny Bradbury June 25, 2026 0 Comments Personal data belonging to politicians, military leaders, and executives was left publicly accessible in what looks like a security misconfiguration. PixelSmash flaw turns video files into attack tools Pieter Arntz June 24, 2026 0 Comments Researchers have found a critical FFmpeg flaw that could let attackers use a malicious video file to compromise vulnerable systems. 1 2 3 … 631 Next Contributors Threat Center Podcast Glossary Scams
