Security researchers are warning Android users to delete a fake VPN and streaming app that can let criminals take over their phones and drain their bank accounts. The app, Mobdro Pro IP TV + VPN, was discovered by researchers at Cleafy to be a malicious sideloaded app, not a legitimate VPN. Their analysis found it […]
Fake VPN and streaming app drops malware that drains your bank account Leggi tutto »
California’s 2025 legislative session closed with 14 new privacy and AI-related bills. We’d like to highlight a few of the most relevant signed bills and encourage other states and countries to follow California’s example. Let’s go over some of the bills that were signed by the governor and how they might affect consumers. Social media
California just put people back in control of their data Leggi tutto »
If you think Apple’s ‘Find My’ feature was just there to help you locate your phone when it slipped down the side of the couch, think again. It turns out this service also helps law enforcement capture criminals. The original “Find My iPhone” was introduced in 2010 as a feature on the iPhone. It was
One stolen iPhone uncovered a network smuggling thousands of devices to China Leggi tutto »
The BBC reported on modeling scams targeting older models. Modeling scams aren’t new, but it’s worth looking at how they spread today, how to spot them, and—most importantly—how to avoid falling victim to them. The classic pitch goes like this: Someone walks up to you in the street and says, “You look so good, you
Modeling scams see mature models as attractive new prospects Leggi tutto »
The short answer is: probably not, but theoretically it’s possible. Researchers at the University of California found a method they called Mic-E-Mouse, which turns your computer mouse into a spy that can listen in on your conversations. The method uses high-performance optical sensors in optical mice, combined with artificial intelligence, to filter out background noise
Is your computer mouse eavesdropping on you? Leggi tutto »
You get a message from a Discord friend. Or maybe an unknown indie developer reaches out to you. “Can you test my game?” they ask. The webpage they send over a link to looks legit: screenshots, dev blurb, itch.io-style layout, and the download button is right there, waiting to be clicked. The problem is
“Can you test my game?” Fake itch.io pages spread hidden malware to gamers Leggi tutto »
Phishers and scammers can’t get enough of sending their feeble attempts to Malwarebytes’ employees. For which we can’t thank them enough because it means we can warn you, our readers. This time the scammers tried to impersonate Best Wallet—an app that lets people store, send, and receive cryptocurrencies like Bitcoin and Ethereum directly on their
Don’t connect your wallet: Best Wallet cryptocurrency scam is making the rounds Leggi tutto »
In December 2024, CPAP Medical Supplies and Services Inc. (CPAP), a Jacksonville—a Florida-based provider of sleep therapy services and CPAP machines—experienced a cybersecurity incident that compromised the personal data of over 90,000 patients. Since CPAP Medical specializes in tailored sleep apnea equipment for the US military, most of the patients are military members, veterans, and
Troops and veterans’ personal information leaked in CPAP Medical data breach Leggi tutto »
Popular social platform Discord has suffered a data breach—though technically, it wasn’t Discord itself that was hacked. A third-party customer support provider was compromised, allowing attackers to access Discord’s user data. Either way, it’s Discord users who feel the impact. The breach, which happened on September 20, didn’t involve a direct attack on Discord’s servers.
Discord warns users after data stolen in third-party breach Leggi tutto »
In a very recent and well-targeted phishing attempt, scammers tried to get hold of the 1Password credentials belonging to a Malwarebytes’ employee. Stealing someone’s 1Password login would be like hitting the jackpot for cybercriminals, because they potentially export all the saved logins the target stored in the password manager. The phishing email looked like this:
Phishers target 1Password users with convincing fake breach alert Leggi tutto »
