Malwarebytes
@malwarebytes.com
All-in-one cybersecurity that's always by your side
https://www.malwarebytes.com/
https://www.malwarebytes.com/
The Evilginx phishing tool impersonates real sign‑in pages so everything looks normal, allowing attackers to steal login details and session cookies even after MFA.
Attackers have a new way to slip past your MFA
Attackers are using a tool called Evilginx to steal session cookies, letting them bypass the need for a multi-factor authentication (MFA) token.
bit.ly
December 3, 2025 at 4:15 PM
The Evilginx phishing tool impersonates real sign‑in pages so everything looks normal, allowing attackers to steal login details and session cookies even after MFA.
"Shall I compare thee to a summer’s day… or tempt AI into misbehaving?"
Which AI models resisted and which failed the poetic jailbreak test?
Which AI models resisted and which failed the poetic jailbreak test?
Whispering poetry at AI can make it break its own rules
Malicious prompts rewritten as poems have been found to bypass AI guardrails. Which models resisted and which failed the poetic jailbreak test?
bit.ly
December 2, 2025 at 3:16 PM
"Shall I compare thee to a summer’s day… or tempt AI into misbehaving?"
Which AI models resisted and which failed the poetic jailbreak test?
Which AI models resisted and which failed the poetic jailbreak test?
‼️ Android users, update now ‼️
Google has patched 107 vulnerabilities in Android, including two high-severity flaws that are being actively exploited.
Google has patched 107 vulnerabilities in Android, including two high-severity flaws that are being actively exploited.
Google patches 107 Android flaws, including two being actively exploited
Google’s December update fixes two Android bugs that criminals are actively exploiting. Update as soon as you can.
bit.ly
December 2, 2025 at 1:50 PM
‼️ Android users, update now ‼️
Google has patched 107 vulnerabilities in Android, including two high-severity flaws that are being actively exploited.
Google has patched 107 vulnerabilities in Android, including two high-severity flaws that are being actively exploited.
Albiriox is an Android Remote Access Trojan (RAT) and banking Trojan built for on-device fraud, where criminals perform transactions directly on the victim’s phone instead of just stealing passwords.
New Android malware lets criminals control your phone and drain your bank account
Albiriox now targets over 400 financial apps and lets criminals operate your phone almost exactly as if it were in their hands.
bit.ly
December 1, 2025 at 5:57 PM
Albiriox is an Android Remote Access Trojan (RAT) and banking Trojan built for on-device fraud, where criminals perform transactions directly on the victim’s phone instead of just stealing passwords.
We're proud to join the Global Anti-Scam Alliance (GASA). We’re teaming up to take on scams and online threats so everyone can feel safer on the internet.
We're excited to join forces and keep making the digital world a safer place 💙🔒
We're excited to join forces and keep making the digital world a safer place 💙🔒
December 1, 2025 at 3:45 PM
We're proud to join the Global Anti-Scam Alliance (GASA). We’re teaming up to take on scams and online threats so everyone can feel safer on the internet.
We're excited to join forces and keep making the digital world a safer place 💙🔒
We're excited to join forces and keep making the digital world a safer place 💙🔒
That modded Amazon Fire Stick could be loaded with malware.
The hidden costs of illegal streaming and modded Amazon Fire TV Sticks
New research shows that "modded Amazon Fire TV Sticks" and piracy apps often lead to scams, stolen data, and financial loss.
www.malwarebytes.com
November 28, 2025 at 9:36 PM
That modded Amazon Fire Stick could be loaded with malware.
A nationwide cyberattack on the emergency alert system is prompting local governments to warn residents and urge password resets due to the breach and outage.
Millions at risk after nationwide CodeRED alert system outage and data breach
A ransomware attack against the CodeRED emergency alert platform has triggered warnings across the US.
bit.ly
November 27, 2025 at 6:55 PM
A nationwide cyberattack on the emergency alert system is prompting local governments to warn residents and urge password resets due to the breach and outage.
Fun Thanksgiving conversation starters:
• What's your favorite Malwarebytes feature?
• Privacy is a fundamental right
• Did you know Malwarebytes is free?
• Turn off Copilot with Malwarebytes
• What's your favorite Malwarebytes feature?
• Privacy is a fundamental right
• Did you know Malwarebytes is free?
• Turn off Copilot with Malwarebytes
November 27, 2025 at 5:14 PM
Fun Thanksgiving conversation starters:
• What's your favorite Malwarebytes feature?
• Privacy is a fundamental right
• Did you know Malwarebytes is free?
• Turn off Copilot with Malwarebytes
• What's your favorite Malwarebytes feature?
• Privacy is a fundamental right
• Did you know Malwarebytes is free?
• Turn off Copilot with Malwarebytes
The FBI has warned of a surge in account takeover fraud, coinciding with Amazon’s alert to its 300 million customers about rising brand-impersonation scams.
Holiday shoppers targeted as Amazon and FBI warn of surge in account takeover attacks
Scammers are stepping up their game for the holidays, impersonating brands to trick people into handing over their accounts.
bit.ly
November 27, 2025 at 2:43 PM
The FBI has warned of a surge in account takeover fraud, coinciding with Amazon’s alert to its 300 million customers about rising brand-impersonation scams.
Stay alert this Black Friday! Scammers are targeting shoppers' wallets with fake ads impersonating big brands.
Black Friday scammers offer fake gifts from big-name brands to empty bank accounts
Inside a massive malicious ad campaign that mimics brands like LEGO, Lululemon, and YETI to trick shoppers into handing over bank details.
www.malwarebytes.com
November 26, 2025 at 11:05 PM
Stay alert this Black Friday! Scammers are targeting shoppers' wallets with fake ads impersonating big brands.
A new wave of ClickFix attacks infects users via fake Windows updates and malware hidden in images.
New ClickFix wave infects users with hidden malware in images and fake Windows updates
ClickFix just got more convincing, hiding malware in PNG images and faking Windows updates to make users run dangerous commands.
www.malwarebytes.com
November 26, 2025 at 5:47 PM
A new wave of ClickFix attacks infects users via fake Windows updates and malware hidden in images.
The attackers pose as recruiters and contact people via LinkedIn, luring victims to a fake job website, then tricking them into downloading malware.
Fake LinkedIn jobs trick Mac users into downloading Flexible Ferret malware
Scammers are using fake jobs and a phony video update to infect Mac users with a multi-stage stealer designed for long-term access and data theft.
bit.ly
November 26, 2025 at 3:11 PM
The attackers pose as recruiters and contact people via LinkedIn, luring victims to a fake job website, then tricking them into downloading malware.
Researchers at the University of Vienna and security lab SBA Research hammered WhatsApp's contact-lookup API with 7,000+ queries per second. They were able to confirm 3.5B accounts.
WhatsApp closes loophole that let researchers collect data on 3.5B accounts
A weak spot in WhatsApp’s API allowed researchers to scrape data linked to 3.5 billion registered accounts, including profile photos and “about” text.
www.malwarebytes.com
November 25, 2025 at 3:57 PM
Researchers at the University of Vienna and security lab SBA Research hammered WhatsApp's contact-lookup API with 7,000+ queries per second. They were able to confirm 3.5B accounts.
This AI-powered Teddy bear promised "warmth, fun, and a little extra curiosity," but it delivered a lot more.
AI teddy bear for kids responds with sexual content and advice about weapons
FoloToy's AI teddy bear, Kumma, crossed serious lines, raising fresh concerns about how little oversight exists for AI toys marketed to children.
www.malwarebytes.com
November 25, 2025 at 12:54 AM
This AI-powered Teddy bear promised "warmth, fun, and a little extra curiosity," but it delivered a lot more.
What the Flock is going on with all those license plate readers and should you be concerned?
What the Flock is happening with license plate readers?
What Flock's ALPR cameras really collect, how they’re used in neighborhoods, and what you can do to stay in control.
www.malwarebytes.com
November 24, 2025 at 10:04 PM
What the Flock is going on with all those license plate readers and should you be concerned?
Cybercriminals are using browser push notifications to deliver malware and phishing attacks.
Matrix Push C2 abuses browser notifications to deliver phishing and malware
Attackers can send highly realistic push notifications through your browser, including fake alerts that can lead to malware or phishing pages.
bit.ly
November 24, 2025 at 3:58 PM
Cybercriminals are using browser push notifications to deliver malware and phishing attacks.
Calendar spam is on the rise. Here's how to remove unwanted calendar invites and how to prevent them.
Fake calendar invites are spreading. Here's how to remove them and prevent more
Calendar spam is a growing problem, often arriving as email attachments or as download links in messaging apps.
www.malwarebytes.com
November 21, 2025 at 7:20 PM
Calendar spam is on the rise. Here's how to remove unwanted calendar invites and how to prevent them.
Good news everyone! Google wants Gemini to read your emails. 🫠
Gmail can read your emails and attachments to train its AI, unless you opt out
A new Gmail update may allow Google to use your private messages and attachments for AI training. Here's how to turn it off.
www.malwarebytes.com
November 20, 2025 at 11:36 PM
Good news everyone! Google wants Gemini to read your emails. 🫠
Stay safe this holiday season! With deals all over the internet and shopping moving faster than ever, it’s easy to fall for scams. Learn how to protect yourself from holiday shopping scams and keep your peace of mind with our Holiday Scam Report.
https://bit.ly/48p0PM6
https://bit.ly/48p0PM6
November 20, 2025 at 7:40 PM
Stay safe this holiday season! With deals all over the internet and shopping moving faster than ever, it’s easy to fall for scams. Learn how to protect yourself from holiday shopping scams and keep your peace of mind with our Holiday Scam Report.
https://bit.ly/48p0PM6
https://bit.ly/48p0PM6
DigitStealer is a new infostealer built for macOS, and it stands out for being smarter than most. Here's how it works and how to stay safe.
Mac users warned about new DigitStealer information stealer
DigitStealer is a new infostealer built for macOS, and it stands out for being smarter than most. Here's how it works and how to stay safe.
www.malwarebytes.com
November 20, 2025 at 1:42 PM
DigitStealer is a new infostealer built for macOS, and it stands out for being smarter than most. Here's how it works and how to stay safe.
Our children build digital lives long before they get to choose whether or not to have one. Here's how to shrink their online footprint and stay smart about what you share about them online.
Sharenting: are you leaving your kids' digital footprints for scammers to find?
Our children build digital lives long before they understand them. Here's how to shrink their online footprint and stay smart about “sharenting.”
www.malwarebytes.com
November 19, 2025 at 9:31 PM
Our children build digital lives long before they get to choose whether or not to have one. Here's how to shrink their online footprint and stay smart about what you share about them online.
Google has released an update for Chrome that fixes two high severity vulnerabilities that could lead to stolen data, malware infections, or even a full system compromise.
Read the latest.
Read the latest.
Chrome zero-day under active attack: visiting the wrong site could hijack your browser
Google has released an update to patch two high-severity vulnerabilities, one of which is already under active exploitation.
www.malwarebytes.com
November 18, 2025 at 9:47 PM
Google has released an update for Chrome that fixes two high severity vulnerabilities that could lead to stolen data, malware infections, or even a full system compromise.
Read the latest.
Read the latest.
DoorDash is known for delivering takeout food, but last month the company accidentally served up a tasty plate of personal data, too.
https://bit.ly/4a5aIzM
https://bit.ly/4a5aIzM
Thieves order a tasty takeout of names and addresses from DoorDash
It was the way DoorDash handled the communication of the breach, as much as the data leaked, that has angered customers.
bit.ly
November 18, 2025 at 2:44 PM
DoorDash is known for delivering takeout food, but last month the company accidentally served up a tasty plate of personal data, too.
https://bit.ly/4a5aIzM
https://bit.ly/4a5aIzM
If you want to talk dirty to ChatGPT, you're gonna have to give OpenAI more of your personal information.
The price of ChatGPT’s erotic chat? $20/month and your identity
This is how surveillance gets normalized: one “safety” feature at a time.
www.malwarebytes.com
November 17, 2025 at 8:56 PM
If you want to talk dirty to ChatGPT, you're gonna have to give OpenAI more of your personal information.
Celebrate the season with real deals you can trust. Save 50% during the Malwarebytes Really Real Sale
https://www.malwarebytes.com/landing-page/really-real-sale-25?utm_source=social&utm_medium=social&utm_campaign=b2c_pro_acq_bfcm25_176186080970&utm_content=Social&x-source=bfcm-off-promo-social
https://www.malwarebytes.com/landing-page/really-real-sale-25?utm_source=social&utm_medium=social&utm_campaign=b2c_pro_acq_bfcm25_176186080970&utm_content=Social&x-source=bfcm-off-promo-social
November 17, 2025 at 6:16 PM
Celebrate the season with real deals you can trust. Save 50% during the Malwarebytes Really Real Sale
https://www.malwarebytes.com/landing-page/really-real-sale-25?utm_source=social&utm_medium=social&utm_campaign=b2c_pro_acq_bfcm25_176186080970&utm_content=Social&x-source=bfcm-off-promo-social
https://www.malwarebytes.com/landing-page/really-real-sale-25?utm_source=social&utm_medium=social&utm_campaign=b2c_pro_acq_bfcm25_176186080970&utm_content=Social&x-source=bfcm-off-promo-social