Threat Intelligence News and Insights - Malwarebytes Blog

Personal
< Products
Device Protection & Antivirus
Premium Security Antivirus
Mobile Security for Android & iOS
Identity Protection
Identity Theft Protection
Personal Data Remover
Digital Footprint Scanner
Privacy Protection
Privacy VPN
Browser Guard
AdwCleaner
Have a current computer infection?
Free Virus Scan
Worried it’s a scam?
Free Scam Guard tool
Try our antivirus with a free, full-featured 14-day trial
Free Antivirus
Get your free digital security toolkit
Explore all free tools

Find the right cyberprotection for you
Compare plans and pricing
Business

< Business

Teams
Protect small & home offices – no IT expertise needed
ThreatDown
Award-winning endpoint security for small and medium businesses
Pricing

< Pricing

Personal pricing
Protect your personal devices and data
Small or home office pricing
Protect your team’s devices and data – no IT skills needed
Corporate pricing
Explore award-winning endpoint security for your business
Partners
Resources
< Resources
Security terms glossary
Threat Center
Blog – Cybersecurity News
About Malwarebytes
Press
Careers
Cybersecurity Resource Center
Antivirus
Malware
Phishing
Ransomware
Small business hub
See all articles
Help

< Support

Malwarebytes Help Center
Malwarebytes and Teams Customers
ThreatDown Business Support
Nebula and Oneview Customers
Community Forums

THREAT INTEL

Attackers adopt JavaScript runtime Bun to spread NWHStealer

May 6, 2026

A legitimate developer tool is being repurposed by attackers to package and spread this Windows infostealer in harder-to-detect ways.

World Cup 2026

The 2026 World Cup scam economy is already running before the first whistle

May 4, 2026

A four-part scam economy is already forming around the 2026 World Cup, using the tournament’s brand to sell everything from fake visas to worthless tokens.

TradingClaw site drops Needle Stealer

Malicious trading website drops malware that hands your browser to attackers

April 22, 2026

A fake TradingView AI agent site leads to malware that can take over your browser, steal your accounts and financial data, and open the door to further attacks.

Fake Google Antigravity installer

Fake Google Antigravity downloads are stealing accounts in minutes

April 21, 2026

Another AI launch, another trap. A trojanized Google Antigravity installer runs like normal, but secretly hands over your accounts to the attackers.

shipment delivery

“Your shipment has arrived” email hides remote access software

April 17, 2026

This DHL-themed email tries to get recipients to install remote access software attackers can use to deploy further malware, including ransomware.

Fake Slack website delivers malware

A fake Slack download is giving attackers a hidden desktop on your machine

April 16, 2026

This trojanized Slack installer looks normal, but quietly gives attackers an invisible desktop to access your accounts and data. We take a deep dive into the attack.

Youtube on a phone

Fake YouTube copyright notices can steal your Google login

April 15, 2026

This convincing copyright scam is targeting YouTube creators. Attackers can take over your channel, plus your entire Google account.

Windows NWHStealer

From fake Proton VPN sites to gaming mods, this Windows infostealer is everywhere

April 15, 2026

Hiding in imposter sites, GitHub downloads, and YouTube links, this infostealer is designed to hijack accounts and drain cryptocurrency wallets.

unlimited credit

Credit Resources Vault: Why this credit email set off our scam alarms

April 15, 2026

Inside a targeted email campaign that funnels the most vulnerable financial people into handing over sensitive data, and signing up for weekly fees.

Previous 1 2 3 4 … 79 Next