Researchers have discovered a very versatile ad fraud network—known as Kaleidoscope—that bombards users with unskippable ads. Normally, ad fraud is not a concern for users of infected devices. They might experience some sluggish behavior on their device, but often that’s the extent of it. Ad fraud is a type of scam aimed at companies, causing […]
Android users bombarded with unskippable ads Leggi tutto »
Last week on Malwarebytes Labs: The AI chatbot cop squad is here (Lock and Code S06E09) Android fixes 47 vulnerabilities, including one zero-day. Update as soon as you can! “Your privacy is a promise we don’t break”: Dating app Raw exposes sensitive user data FBI issues warning as scammers target victims of crime WhatsApp hack:
A week in security (May 4 – May 10) Leggi tutto »
Google has expressed plans to use Artificial Intelligence (AI) to stop tech support scams in Chrome. With the launch of Chrome version 137, Google plans to use the on-device Gemini Nano large language model (LLM) to recognize and block tech support scams. Users already have the ability to chose Enhanced Protection under Settings > Privacy
Google Chrome will use AI to block tech support scam websites Leggi tutto »
The relentless battle against online fraud is a constant evolution, a digital chase where security teams and malicious actors continually adapt. The increasing sophistication of attacks is blurring the lines between legitimate user behavior and impersonation attempts. The campaign we are exposing today is a reminder that even the most advanced security technologies do not
Sponsored ads on Google search don’t just irritate users—they also provide a dangerous opportunity for cybercriminals to spread malware and scams to their unsuspecting victims. What looks like a harmless search result can be a carefully disguised trap. At Malwarebytes, our researchers have uncovered a variety of threats hiding in plain sight within these sponsored
For decades, passwords have been our default method for keeping online accounts safe. But in the age of artificial intelligence, this traditional security method is facing challenges it was never built to withstand. A team at Cybernews conducted a study of over 19 billion newly exposed passwords which showed we’re looking at a “a widespread
Passwords in the age of AI: We need to find alternatives Leggi tutto »
Meta has won almost $170m in damages from Israel-based NSO Group, maker of the Pegasus spyware. The ruling comes after a six-year legal case against the company after Meta accused it of misusing its servers to spy on users. According to the original complaint against NSO Group, filed in October 2019, the spyware vendor used
WhatsApp hack: Meta wins payout over NSO Group spyware Leggi tutto »
The FBI has issued a warning about an ongoing fraud scheme where criminal scammers are impersonating FBI Internet Crime Complaint Center (IC3) employees in order to scam people. Between December 2023 and February 2025, the FBI received over 100 reports of scams involving people posing as IC3 employees. These scammers contact their victims using various
FBI issues warning as scammers target victims of crime Leggi tutto »
Any app that hands over user data is a concern, but leaky dating apps are especially worrying given the sensitivity of the data involved. A relatively new app called Raw that aims to rewrite the rules of dating is the latest to trip over its coattails by exposing user data to…well, anyone who asked for
“Your privacy is a promise we don’t break”: Dating app Raw exposes sensitive user data Leggi tutto »
Google has patched 47 vulnerabilities in Android, including one actively exploited zero-day vulnerability in its May 2025 Android Security Bulletin. Zero-days are vulnerabilities that are exploited before vendors have a chance to patch them—often before they even know about them. The May updates are available for Android 13, 14, and 15. Android vendors are notified
Android fixes 47 vulnerabilities, including one zero-day. Update as soon as you can! Leggi tutto »