A week in security (February 9 – February 15)

• Credential‑stealing Chrome extensions discovered; Malwarebytes Labs offers detection and removal guide. • Fake online shops target Winter Olympics 2026 fans, phishing for payment info. • Rogue Outlook add‑in stole 4,000 credentials and payment data from users. • Meta faces trial over child exploitation, grooming, and social media addiction claims. • Apple releases patch for zero‑day flaw that could let attackers take device control. • Criminals use AI website builders to clone major brands, increasing phishing risk.

Article Summaries:

• A week in security (Feb 9‑15) - Malwarebytes Labs highlighted a surge in credential‑stealing threats, including Chrome extensions, an Outlook add‑in that siphoned 4,000 logins, and fake shops targeting Winter Olympics 2026 fans. Apple patched a zero‑day flaw that could let attackers seize device control, while February’s Patch Tuesday revealed six actively exploited zero‑days. Criminals are also using AI‑driven website builders to clone major brands. Other notable events: Meta faces trial over child‑exploitation claims, Discord will enforce a teen‑mode profile check, a Snapchat scam exposed hundreds of users, and a leaked AI chat app exposed 300 million messages. Malwarebytes earned a PCMag Best Tech Brand award.

Sources:

• https://www.malwarebytes.com/blog/news/2026/02/a-week-in-security-february-9-february-15