May’s Patch Tuesday may not be the giant release many expected, but there are still plenty of important fixes that shouldn’t be ignored. This article has been indexed from Malwarebytes Read the original article: May 2026 Patch Tuesday: no zero-days…
Category: Malwarebytes
Fake Claude search results lure Mac users into ClickFix attack
Researchers found a ClickFix campaign that uses fake Claude setup guides to trick Mac users into infecting themselves. This article has been indexed from Malwarebytes Read the original article: Fake Claude search results lure Mac users into ClickFix attack
1 in 8 employees have sold company logins or know someone who has
Cifas just published research that should bother anyone who runs a business, or buys from one. This article has been indexed from Malwarebytes Read the original article: 1 in 8 employees have sold company logins or know someone who has
Stolen Canvas data was “returned” after hacker agreement, Instructure says
Instructure says the stolen Canvas data impacting millions of students and staff was “returned.” That’s not how breaches work. This article has been indexed from Malwarebytes Read the original article: Stolen Canvas data was “returned” after hacker agreement, Instructure says
Yarbo responds to robot flaws that could mow down their owners
A researcher found a host of vulnerabilities in Yarbo garden robots that could expose Wi-Fi passwords, hijack cameras, and run over their owners on command. This article has been indexed from Malwarebytes Read the original article: Yarbo responds to robot…
A week in security (May 4 – May 10)
A list of topics we covered in the week of May 4 to May 10 of 2026 This article has been indexed from Malwarebytes Read the original article: A week in security (May 4 – May 10)
Microsoft says Edge’s plaintext password behavior is “by design”
A researcher found Edge loads saved passwords into computer memory when it starts, making them easier to steal if a device is already compromised. This article has been indexed from Malwarebytes Read the original article: Microsoft says Edge’s plaintext password…
ShinyHunters escalates Canvas attacks with school login defacements
Days after the first attack, ShinyHunters is applying pressure with ransom messages on school login portals. This article has been indexed from Malwarebytes Read the original article: ShinyHunters escalates Canvas attacks with school login defacements
Massive AI investment scam network spans 15,500 domains
AI investment scammers abused the Keitaro ad-tracking platform to cloak their campaign, exposing it only to likely targets. This article has been indexed from Malwarebytes Read the original article: Massive AI investment scam network spans 15,500 domains
If a fake moustache can fool age checks, is the Online Safety Act working?
A UK report finds some progress since the Act came into force, but widespread workarounds, ongoing harm, and unresolved privacy concerns suggest the impact is still limited. This article has been indexed from Malwarebytes Read the original article: If a…
Google Chrome’s silent 4GB AI download problem
Google Chrome writes a 4GB AI model to users’ devices without asking, and reinstalls it if you delete it. This article has been indexed from Malwarebytes Read the original article: Google Chrome’s silent 4GB AI download problem
Millions of students’ personal data stolen in major education breach
ShinyHunters claims it stole personal data from 275 million users on Instructure’s Canvas platform across schools and education providers. This article has been indexed from Malwarebytes Read the original article: Millions of students’ personal data stolen in major education breach
Attackers adopt JavaScript runtime Bun to spread NWHStealer
A legitimate developer tool is being repurposed by attackers to package and spread this Windows infostealer in harder-to-detect ways. This article has been indexed from Malwarebytes Read the original article: Attackers adopt JavaScript runtime Bun to spread NWHStealer
Update WhatsApp now: Two new flaws could expose you to malicious files
WhatsApp patches flaws that could expose users to malicious content and disguised malware. This article has been indexed from Malwarebytes Read the original article: Update WhatsApp now: Two new flaws could expose you to malicious files
Cyberattacks are raising your prices (Lock and Code S07E09)
This week on the Lock and Code podcast, we speak with Eva Velasquez about small business cyberattacks and the “cyber tax” coming for us all. This article has been indexed from Malwarebytes Read the original article: Cyberattacks are raising your…
Thousands of Facebook accounts stolen by phishing emails sent through Google
In an ongoing operation, hackers are hijacking Facebook accounts using Google AppSheet to send phishing emails that pass security checks. This article has been indexed from Malwarebytes Read the original article: Thousands of Facebook accounts stolen by phishing emails sent…
The 2026 World Cup scam economy is already running before the first whistle
A four-part scam economy is already forming around the 2026 World Cup, using the tournament’s brand to sell everything from fake visas to worthless tokens. This article has been indexed from Malwarebytes Read the original article: The 2026 World Cup…
A week in security (April 27 – May 3)
A list of topics we covered in the week of April 27 to May 3 of 2026 This article has been indexed from Malwarebytes Read the original article: A week in security (April 27 – May 3)
3 easy-to-miss cybersecurity risks for small businesses
Small business owners should be sure to fix these three non-technical risks that require little cybersecurity expertise. This article has been indexed from Malwarebytes Read the original article: 3 easy-to-miss cybersecurity risks for small businesses
Actively exploited cPanel bug exposes millions of websites to takeover
A vulnerability in the cPanel/WHM admin interface lets attackers access websites without a username and password. This article has been indexed from Malwarebytes Read the original article: Actively exploited cPanel bug exposes millions of websites to takeover