Last week on Malwarebytes Labs: Adult sites trick users into Liking Facebook posts using a clickjack Trojan Facebook users targeted in ‘login’ phish TeaOnHer, the male version of Tea, is leaking personal information on its users too How Google, Adidas, and more were breached in a Salesforce scam Meta accessed women’s health data from Flo […]
A week in security (August 4 – August 10) Leggi tutto »
As the use of age verification to access adult websites increases in various countries around the world, shady websites with adult content have started a timely malware-fueled campaign to promote links to their own websites. During our daily rounds on Facebook, looking for the latest scams, we noticed something odd about some posts pointing to
Adult sites trick users into Liking Facebook posts using a clickjack Trojan Leggi tutto »
A few weeks ago we warned our readers of a phishing campaign targeting Instagram users that didn’t resort to the usual links to phishing websites, but used mailto: links instead. Now, it seems that these scammers have turned their attention to Facebook users. It works like this: The target receives an email saying that your
Facebook users targeted in ‘login’ phish Leggi tutto »
Last week we reported about some serious leaks in Tea Dating Advice, an app that provides a space for women to exchange information about men they know, have met, or have dated in the past. The app aims to provide a platform where people can share relevant information about, say, potentially abusive partners. However, it
TeaOnHer, the male version of Tea, is leaking personal information on its users too Leggi tutto »
At the heart of multiple data breaches against sophisticated and robust companies, including Google, Adidas, Louis Vuitton, and Chanel, was a rudimentary attack method that required little technical finesse—making a phone call. By disguising themselves as IT support personnel on the phone, hackers belonging to the group “ShinyHunters” successfully tricked the employees at several multinational
How Google, Adidas, and more were breached in a Salesforce scam Leggi tutto »
A jury has ruled that Meta accessed sensitive information from a woman’s reproductive health tracking app without consent. The app in question is called Flo Health. Developed in 2015 in Belarus to track menstrual cycles, it has evolved over the years as a tracking app for highly detailed, intimate aspects of women’s reproductive health. Flo
Meta accessed women’s health data from Flo app without consent, says court Leggi tutto »
We’re excited to announce that MRG Effitas, a globally recognized security assessment firm, has awarded Malwarebytes the prestigious MRG Effitas Android 360° Certificate, one of the toughest independent tests in mobile security. Our mobile protection received the highest marks, achieving a near-perfect detection rate in MRG Effitas’ rigorous lab testing, reaffirming what our customers already
Malwarebytes earns MRG Effitas Android 360° Certificate for mobile threat detection Leggi tutto »
It seems like it’s hard to move on social media without some kind of mention of weight-loss injections these days. And, sure, these drugs can have a positive affect for many people, but not all these cases of weight loss are real, nor are the people promoting them who they say they are. Weight-loss scams
Weight loss scams, or why ‘Jodie Foster’ wants me to lose weight Leggi tutto »
Google has patched six vulnerabilities in Android, including two critical vulnerabilities in its August 2025 Android Security Bulletin. It also covers a critical vulnerability which could have allowed an attacker to execute code on a victim’s device without the victim needing to do anything at all. Last month, Google skipped its monthly security update for the
Critical Android vulnerabilities patched—update as soon as you can Leggi tutto »
Would you give a complete stranger your credit card in return for the promise of easy money? No, neither would we. But apparently well over a hundred people did. Hillsborough County Sheriff’s Office arrested 24 year-old Janetcilize Martinez in Tampa, FL, for allegedly using willing participants’ bank accounts to commit fraud. Police are calling this
Alleged ‘tap-in’ scammer advertised services on social media Leggi tutto »
