Malicious actors have been exploiting critical browser security flaws in Chrome, which can be patched with a recent update. A type of malware has also been discovered that steals Chrome session cookies, allowing attackers to take control of user accounts. Additionally, various scams have been reported, including "Parcel Expert" job offers that are actually parcel mule scams, and fake domain renewal emails that trick website owners into paying scammers. A vulnerability known as PixelSmash has also been identified, which can turn video files into attack tools. These threats highlight the importance of staying vigilant and keeping software up to date, as failure to do so can result in compromised accounts and devices1. This matters to practitioners because staying informed about the latest threats and vulnerabilities is crucial for protecting against potential attacks and maintaining the security of their systems and data.
A week in security (June 22 – June 28)
⚠️ Critical Alert
Why This Matters
Last week on Malwarebytes Labs: Malware steals Chrome session cookies to take over your accounts Beware of “Parcel Expert” job offers: They’re parcel mule scams Update.
References
- Malwarebytes Labs. (2026, June 29). A week in security (June 22 – June 28). *Malwarebytes*. https://www.malwarebytes.com/blog/news/2026/06/a-week-in-security-june-22-june-28
Original Source
Malwarebytes Labs
Read original →