{"id":383747,"date":"2026-03-03T04:04:09","date_gmt":"2026-03-03T04:04:09","guid":{"rendered":"https:\/\/malwaretips.com\/blogs\/?p=383747"},"modified":"2026-03-03T04:04:20","modified_gmt":"2026-03-03T04:04:20","slug":"macquarie-bank-rewards-alert-scam-texts-exposed-investigation","status":"publish","type":"post","link":"https:\/\/malwaretips.com\/blogs\/macquarie-bank-rewards-alert-scam-texts-exposed-investigation\/","title":{"rendered":"Macquarie Bank &#8220;Rewards Alert&#8221; Scam Texts EXPOSED (Investigation)"},"content":{"rendered":"\n<p class=\"wp-block-paragraph\">It starts with a simple nudge that feels routine: a \u201crewards alert\u201d saying your points are about to expire.<\/p><div id=\"mwtad314934414\" class=\"gas_fallback-ad_309684--placement_360520\" style=\"margin-top: 30px;margin-bottom: 30px;\"><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-7750719144850257\" crossorigin=\"anonymous\"><\/script><ins class=\"adsbygoogle\" style=\"display:block;\" data-ad-client=\"ca-pub-7750719144850257\" \ndata-ad-slot=\"3957935887\" \ndata-ad-format=\"auto\" data-full-width-responsive=\"true\"><\/ins>\n<script> \n(adsbygoogle = window.adsbygoogle || []).push({}); \n<\/script>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">If you bank with Macquarie, or even if you do not, that message can still land with the same emotional punch: act now or lose something you already \u201cown.\u201d<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">That urgency is the trap.<\/p><div id=\"mwtad2070277616\" class=\"gas_fallback-ad_381396-ad_309691-placement_360566\" style=\"margin-top: 30px;margin-bottom: 30px;\"><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-7750719144850257\" crossorigin=\"anonymous\"><\/script><ins class=\"adsbygoogle\" style=\"display:block;\" data-ad-client=\"ca-pub-7750719144850257\" \ndata-ad-slot=\"1471373341\" \ndata-ad-format=\"auto\" data-full-width-responsive=\"true\"><\/ins>\n<script> \n(adsbygoogle = window.adsbygoogle || []).push({}); \n<\/script>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">The so called \u201cMacquarie Bank Rewards\u201d notices spreading by SMS and email are commonly phishing attempts designed to push you to a fake login page, steal your credentials, and then use that access to move money, add payees, or take over your account.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">In this guide, you will learn exactly how the scam is structured, what it looks like in the real world, how the criminals profit, and what to do if you clicked or entered any information.<\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter size-full\"><img decoding=\"async\" width=\"566\" height=\"705\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2026\/03\/1-20.jpg\" alt=\"\" class=\"wp-image-383748\" title=\"\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2026\/03\/1-20.jpg 566w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2026\/03\/1-20-241x300.jpg 241w\" sizes=\"(max-width: 566px) 100vw, 566px\" \/><\/figure>\n<\/div>\n\n\n<div id=\"mwtad3926272075\" class=\"gas_fallback-ad_309746-ad_309691-placement_360521\" style=\"margin-top: 30px;margin-bottom: 30px;\"><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-7750719144850257\" crossorigin=\"anonymous\"><\/script><ins class=\"adsbygoogle\" style=\"display:block;\" data-ad-client=\"ca-pub-7750719144850257\" \ndata-ad-slot=\"4456629336\" \ndata-ad-format=\"auto\" data-full-width-responsive=\"true\"><\/ins>\n<script> \n(adsbygoogle = window.adsbygoogle || []).push({}); \n<\/script>\n<\/div><h2 class=\"wp-block-heading\">Scam Overview<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\">What the scam looks like in real life<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Most victims describe the first contact as a short SMS or a polished email that looks like a bank notification.<\/p><div id=\"mwtad1688732243\" class=\"gas_fallback-ad_309686-ad_309691-placement_360569\" style=\"margin-top: 30px;margin-bottom: 30px;\"><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-7750719144850257\" crossorigin=\"anonymous\"><\/script><ins class=\"adsbygoogle\" style=\"display:block;\" data-ad-client=\"ca-pub-7750719144850257\" \ndata-ad-slot=\"6935453015\" \ndata-ad-format=\"auto\" data-full-width-responsive=\"true\"><\/ins>\n<script> \n(adsbygoogle = window.adsbygoogle || []).push({}); \n<\/script>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">A common theme is expiring points, expiring rewards, or a \u201credemption window\u201d that closes at a specific time and date, often framed as \u201c12:00 AM\u201d on a near future deadline.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">In one widely shared example, the message is labeled <strong>\u201cMacquarie Bank Rewards Alert\u201d<\/strong> and claims <strong>11,430 reward points<\/strong> are due to expire <strong>in the next 48 hours<\/strong>, urging immediate redemption to avoid forfeiture.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">It then encourages you to redeem points on \u201cselected rewards\u201d from recognizable brands like Apple and Sony, because familiar brand names reduce skepticism and increase click rates.<\/p><div id=\"mwtad1388583366\" class=\"gas_fallback-ad_381401-ad_309691-placement_360573\" style=\"margin-top: 30px;margin-bottom: 30px;\"><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-7750719144850257\" crossorigin=\"anonymous\"><\/script><ins class=\"adsbygoogle\" style=\"display:block;\" data-ad-client=\"ca-pub-7750719144850257\" \ndata-ad-slot=\"5315249587\" \ndata-ad-format=\"auto\" data-full-width-responsive=\"true\"><\/ins>\n<script> \n(adsbygoogle = window.adsbygoogle || []).push({}); \n<\/script>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">Another red flag in that example is the sender: the message appears to come from an international number (for instance, starting with <strong>+212<\/strong>). That does not automatically prove fraud, but it is uncommon for legitimate banking notifications to originate from random foreign mobile numbers.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Scammers rely on these subtle inconsistencies because many people only scan the headline and the deadline.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Why \u201crewards points\u201d is such an effective lure<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Banking phishing works best when it targets something that feels low risk and familiar.<\/p><div id=\"mwtad2778605838\" class=\"gas_fallback-ad_381404-ad_309691-placement_381406\" style=\"margin-top: 30px;margin-bottom: 30px;\"><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-7750719144850257\" crossorigin=\"anonymous\"><\/script><ins class=\"adsbygoogle\" style=\"display:block;\" data-ad-client=\"ca-pub-7750719144850257\" \ndata-ad-slot=\"8735619847\" \ndata-ad-format=\"auto\" data-full-width-responsive=\"true\"><\/ins>\n<script> \n(adsbygoogle = window.adsbygoogle || []).push({}); \n<\/script>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">Reward points checks those boxes.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Many customers are used to seeing points balances, promotional redemptions, and expiration reminders from retailers and airlines. So when a bank branded message uses the same language, it can feel normal.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This also lowers your guard because the request is not framed as \u201cconfirm your identity,\u201d which sounds dangerous. It is framed as \u201credeem what is yours,\u201d which sounds helpful.<\/p><div id=\"mwtad2919060033\" class=\"gas_fallback-ad_360582-ad_309691-placement_360581\" style=\"margin-top: 30px;margin-bottom: 30px;\"><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-7750719144850257\" crossorigin=\"anonymous\"><\/script><ins class=\"adsbygoogle\" style=\"display:block;\" data-ad-client=\"ca-pub-7750719144850257\" \ndata-ad-slot=\"9971336976\" \ndata-ad-format=\"auto\" data-full-width-responsive=\"true\"><\/ins>\n<script> \n(adsbygoogle = window.adsbygoogle || []).push({}); \n<\/script>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">The other advantage for criminals is that rewards messages can be sent to anyone, not just confirmed customers.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">If you do not have a Macquarie account, you might still click out of curiosity, or because you once had an account, or because you assume you forgot about a rewards program. Phishing campaigns are built on volume and probability, not perfect targeting.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">The core goal: steal access, then convert access into money<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">At its heart, this is an account takeover play.<\/p><div id=\"mwtad1847079699\" class=\"gas_fallback-ad_360567-ad_309691-placement_360771\" style=\"margin-top: 30px;margin-bottom: 30px;\"><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-7750719144850257\" crossorigin=\"anonymous\"><\/script><ins class=\"adsbygoogle\" style=\"display:block;\" data-ad-client=\"ca-pub-7750719144850257\" \ndata-ad-slot=\"6224621518\" \ndata-ad-format=\"auto\" data-full-width-responsive=\"true\"><\/ins>\n<script> \n(adsbygoogle = window.adsbygoogle || []).push({}); \n<\/script>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">The scammers want one or more of the following:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Your online banking username and password<\/li>\n\n\n\n<li>One time passcodes (OTP) or 2 factor authentication codes<\/li>\n\n\n\n<li>Security question answers (often used as backup verification)<\/li>\n\n\n\n<li>Card details (card number, expiry date, CVV) if the fake page asks for them<\/li>\n\n\n\n<li>Personal data that helps them bypass verification later (date of birth, address, phone number)<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">Once they have credentials, they try to log in quickly, before you realize anything is wrong.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">If they also capture an OTP, they may be able to complete a login even if you have multi factor authentication enabled.<\/p><div id=\"mwtad661416552\" class=\"gas_fallback-ad_360571-ad_309691-placement_360772\" style=\"margin-top: 30px;margin-bottom: 30px;\"><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-7750719144850257\" crossorigin=\"anonymous\"><\/script><ins class=\"adsbygoogle\" style=\"display:block;\" data-ad-client=\"ca-pub-7750719144850257\" \ndata-ad-slot=\"5867729999\" \ndata-ad-format=\"auto\" data-full-width-responsive=\"true\"><\/ins>\n<script> \n(adsbygoogle = window.adsbygoogle || []).push({}); \n<\/script>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">From there, the conversion paths vary, but the end result is the same: money leaves your control.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Why the deadline is always \u201csoon\u201d<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Urgency is not decoration. It is the mechanism.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">A points expiration threat creates a narrow time window where you feel pressured to act first and verify later.<\/p><div id=\"mwtad658845517\" class=\"gas_fallback-ad_360576-ad_309691-placement_360773\" style=\"margin-top: 30px;margin-bottom: 30px;\"><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-7750719144850257\" crossorigin=\"anonymous\"><\/script><ins class=\"adsbygoogle\" style=\"display:block;\" data-ad-client=\"ca-pub-7750719144850257\" \ndata-ad-slot=\"6594472392\" \ndata-ad-format=\"auto\" data-full-width-responsive=\"true\"><\/ins>\n<script> \n(adsbygoogle = window.adsbygoogle || []).push({}); \n<\/script>\n<\/div>\n\n\n\n<p class=\"wp-block-paragraph\">Scammers deliberately pick:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Deadlines late at night or early morning (\u201c12:00 AM\u201d) so it feels official and automated<\/li>\n\n\n\n<li>Near term dates, often within days<\/li>\n\n\n\n<li>Language like \u201cmust be made before the expiry date to avoid forfeiture\u201d<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">That last word, \u201cforfeiture,\u201d is a classic tell. It is legal sounding, heavy, and meant to trigger compliance.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The goal is to get you to tap the link while you are distracted: commuting, working, cooking, or about to sleep.<\/p><div id=\"mwtad728980085\" class=\"gas_fallback-ad_360583-ad_309691-placement_360774\" style=\"margin-top: 30px;margin-bottom: 30px;\"><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-7750719144850257\" crossorigin=\"anonymous\"><\/script><ins class=\"adsbygoogle\" style=\"display:block;\" data-ad-client=\"ca-pub-7750719144850257\" \ndata-ad-slot=\"8849826992\" \ndata-ad-format=\"auto\" data-full-width-responsive=\"true\"><\/ins>\n<script> \n(adsbygoogle = window.adsbygoogle || []).push({}); \n<\/script>\n<\/div>\n\n\n\n<h3 class=\"wp-block-heading\">How the fake redemption flow typically works<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Most versions of the \u201cMacquarie Bank Rewards\u201d scam follow the same pattern:<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>A bank branded alert<\/strong> claims points are expiring.<\/li>\n\n\n\n<li><strong>A link is included<\/strong> to \u201credeem now\u201d or \u201csecure your points.\u201d<\/li>\n\n\n\n<li><strong>A page opens that looks legitimate<\/strong>, using a bank logo, similar colors, and login fields.<\/li>\n\n\n\n<li><strong>You enter credentials<\/strong>, and sometimes an OTP.<\/li>\n\n\n\n<li><strong>The page may show an error<\/strong>, a loading spinner, or \u201csession expired,\u201d to keep you calm.<\/li>\n\n\n\n<li><strong>Behind the scenes, the criminals are logging in<\/strong> with the details you provided.<\/li>\n<\/ol>\n\n\n\n<p class=\"wp-block-paragraph\">Sometimes the fake page will redirect you to a real site afterward.<\/p>\n\n\n\n<div id=\"mwtad675886352\" class=\"gas_fallback-ad_360584-ad_309691-placement_360775\" style=\"margin-top: 30px;margin-bottom: 30px;\"><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-7750719144850257\" crossorigin=\"anonymous\"><\/script><ins class=\"adsbygoogle\" style=\"display:block;\" data-ad-client=\"ca-pub-7750719144850257\" \ndata-ad-slot=\"3952847241\" \ndata-ad-format=\"auto\" data-full-width-responsive=\"true\"><\/ins>\n<script> \n(adsbygoogle = window.adsbygoogle || []).push({}); \n<\/script>\n<\/div><p class=\"wp-block-paragraph\">That trick is intentional. If you end up on a legitimate page, you may assume the earlier steps were fine and you just \u201cmisclicked.\u201d<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Why it can fool careful people<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Many people assume phishing is easy to spot because it has bad grammar or obvious fake links.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">That is not always true anymore.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Modern phishing kits are plug and play. Criminals can deploy polished templates that:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Auto resize for mobile screens<\/li>\n\n\n\n<li>Use \u201chttps\u201d so a padlock icon appears<\/li>\n\n\n\n<li>Copy real login layouts closely<\/li>\n\n\n\n<li>Include convincing error messages and progress screens<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">Some campaigns even personalize the page with \u201cMacquarie\u201d branding and \u201cRewards\u201d terminology that feels plausible.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The scam does not need to fool everyone.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">If it fools only 1% of recipients, a campaign sent to 100,000 numbers can still create a large number of compromised accounts.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Common red flags in Macquarie rewards phishing messages<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Look for clusters of warning signs, not a single perfect indicator.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Here are patterns that show up again and again:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Unexpected rewards balance:<\/strong> a specific number of points you do not recognize, like 11,430<\/li>\n\n\n\n<li><strong>High pressure deadline:<\/strong> \u201cdue to expire,\u201d \u201cact now,\u201d \u201cavoid forfeiture\u201d<\/li>\n\n\n\n<li><strong>Generic branding:<\/strong> \u201cRewards Alert\u201d without your name or account context<\/li>\n\n\n\n<li><strong>Odd sender details:<\/strong> foreign numbers, random email domains, or unrelated display names<\/li>\n\n\n\n<li><strong>Awkward formal language:<\/strong> \u201cWe hereby inform you\u201d is more common in scams than in real customer messaging<\/li>\n\n\n\n<li><strong>Incentive stacking:<\/strong> name dropping Apple, Sony, and \u201cother reputable brands\u201d to amplify trust<\/li>\n\n\n\n<li><strong>A link that does not match the bank:<\/strong> shortened links, misspellings, extra words, or strange subdomains<\/li>\n\n\n\n<li><strong>Requests for login or verification:<\/strong> any link that pushes you to sign in from a message should be treated as high risk<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">If you see multiple red flags at once, assume it is malicious until proven otherwise.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Who is targeted<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Phishing campaigns like this typically cast a wide net.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">That said, certain groups are hit harder because they are more likely to engage with rewards messaging:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>People who frequently redeem loyalty points (credit cards, airlines, retailers)<\/li>\n\n\n\n<li>Busy professionals who skim notifications and act quickly<\/li>\n\n\n\n<li>Older customers who are less familiar with phishing patterns on mobile<\/li>\n\n\n\n<li>New customers who are still learning what \u201cnormal\u201d Macquarie messages look like<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">Criminals also rely on \u201clist recycling.\u201d Your number may be on a leaked marketing list, a data breach list, or a scraped database.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">That is why you can receive the message even if you are not a Macquarie customer.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">The real risk: it is not about points at all<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">The \u201cpoints\u201d are bait.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The real prize is your banking access and the ability to move funds.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Once inside an account, attackers may attempt to:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Create or modify payees<\/li>\n\n\n\n<li>Schedule transfers<\/li>\n\n\n\n<li>Change contact details to lock you out<\/li>\n\n\n\n<li>Add new devices as trusted devices<\/li>\n\n\n\n<li>Trigger password resets and intercept confirmation steps<\/li>\n\n\n\n<li>Harvest additional data from statements and profile screens<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">In some cases, the financial theft happens fast.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">In other cases, the attacker plays a longer game, using your access to learn your habits and attempt larger transfers later.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">That is why it matters to respond quickly even if you \u201conly clicked.\u201d<\/p>\n\n\n\n<div id=\"mwtad2978091433\" class=\"gas_fallback-ad_309747-ad_309691-placement_360587\" style=\"margin-top: 30px;margin-bottom: 30px;\"><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-7750719144850257\" crossorigin=\"anonymous\"><\/script><ins class=\"adsbygoogle\" style=\"display:block;\" data-ad-client=\"ca-pub-7750719144850257\" \ndata-ad-slot=\"9589536513\" \ndata-ad-format=\"auto\" data-full-width-responsive=\"true\"><\/ins>\n<script> \n(adsbygoogle = window.adsbygoogle || []).push({}); \n<\/script>\n<\/div><h2 class=\"wp-block-heading\">How The Scam Works<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\">Step 1: The initial hook arrives by SMS or email<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">The first message is designed to look like a standard bank notification.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">It usually includes:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>A Macquarie branded subject line or header<\/li>\n\n\n\n<li>A statement that your rewards points are expiring soon<\/li>\n\n\n\n<li>A specific number of points to make it feel account based<\/li>\n\n\n\n<li>A redemption instruction with a link<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">The criminals want you to feel like you are fixing a small administrative task.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">If you think, \u201cI should handle this quickly,\u201d the scam is already working.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Here is how the scam texts might look<\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p class=\"wp-block-paragraph\">Macquarie Bank Rewards Alert<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">We hereby inform you that 11,430 Rewards Points are due to expire at 12:00 AM on [date]. Redemption must be made before the expiry date to avoid forfeiture.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Redeem your points on selected rewards from Apple, Sony, and other reputable brands before they expire.<\/p>\n<\/blockquote>\n\n\n\n<h3 class=\"wp-block-heading\">Step 2: Urgency and loss aversion push you to click<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Most people do not click phishing links because they want to.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">They click because they are trying to prevent a loss.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This is basic behavioral psychology: losing something you think you already have feels worse than missing out on a new benefit.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">That is why the message emphasizes forfeiture and deadlines.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">It is also why the time window is short.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The scammers want a rushed decision.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Step 3: The link leads to a fake redemption or login page<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">When you tap the link, you are typically sent to one of these setups:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>A fake \u201cRewards Redemption\u201d landing page with a \u201cLog in to continue\u201d button<\/li>\n\n\n\n<li>A direct fake \u201cMacquarie login\u201d page<\/li>\n\n\n\n<li>A page that claims you must \u201cverify\u201d before redeeming points<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">These pages are usually mobile optimized and visually clean.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">They often include:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>A copied logo<\/li>\n\n\n\n<li>Familiar banking style fonts<\/li>\n\n\n\n<li>Clean form fields for username and password<\/li>\n\n\n\n<li>Sometimes a banner about \u201csecurity\u201d to reassure you<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">The layout is designed to reduce friction so you type without thinking.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Step 4: Credential harvesting happens instantly<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">As soon as you enter your username and password, the information is transmitted to the attacker\u2019s server.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Two important details many victims do not realize:<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li>The fake page can validate formatting, not correctness. It can accept any input and still feel \u201creal.\u201d<\/li>\n\n\n\n<li>The attacker can use your credentials immediately, often within seconds.<\/li>\n<\/ol>\n\n\n\n<p class=\"wp-block-paragraph\">Some phishing kits are integrated with real time relay tools.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">That means the attacker enters your credentials on the real Macquarie login screen while you are still on the fake page.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Step 5: The scam tries to capture your OTP or 2FA code<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">If your account uses an OTP via SMS, authenticator, or push notification, the attacker still needs a second factor.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">That is why many fake pages include a second step:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u201cEnter the verification code we sent you\u201d<\/li>\n\n\n\n<li>\u201cConfirm your identity to redeem points\u201d<\/li>\n\n\n\n<li>\u201cSecurity check required\u201d<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">This is the most dangerous moment.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">If you enter the OTP, you are effectively authorizing the attacker\u2019s login in real time.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Even cautious people can fall for this because the code does arrive on their phone, which makes it feel legitimate.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">But the code is being triggered by the attacker attempting to sign in.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Step 6: The fake page shows an error to buy time<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">After collecting credentials, many phishing pages display a message like:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u201cInvalid password, please try again\u201d<\/li>\n\n\n\n<li>\u201cSystem error, please retry later\u201d<\/li>\n\n\n\n<li>\u201cSession timed out\u201d<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">This is a deliberate delay tactic.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">It keeps you interacting with the fake page while the attacker works in the background.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">It also encourages you to re enter your password, giving the attacker a second copy in case the first one had a typo.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Sometimes, after the \u201cerror,\u201d the page redirects you to a legitimate website.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">That reduces suspicion and makes victims less likely to report quickly.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Step 7: Account takeover and financial theft attempts begin<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Once the attacker logs into the real account, they move fast.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Common actions include:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Checking balances and recent transactions<\/li>\n\n\n\n<li>Reviewing linked accounts and payees<\/li>\n\n\n\n<li>Attempting transfers to mule accounts<\/li>\n\n\n\n<li>Trying to add a new payee if required<\/li>\n\n\n\n<li>Attempting to change your phone number or email address<\/li>\n\n\n\n<li>Triggering password resets or security setting changes<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">If the attacker can change contact details, they can intercept alerts that would otherwise warn you.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">If they cannot, they may still attempt small \u201ctest\u201d transfers first.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Those smaller transfers are meant to slip through unnoticed.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Step 8: Follow on scams and resale of your data<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Even if the attacker fails to move funds, your information still has value.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Compromised banking credentials and personal data are commonly:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Sold to other criminals<\/li>\n\n\n\n<li>Used in future phishing attempts with more personalization<\/li>\n\n\n\n<li>Combined with other breached data for identity fraud<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">That is why you may receive more scam messages after engaging with one.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">From a criminal\u2019s perspective, a \u201cclicker\u201d is a higher value target than someone who ignores messages.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Variations you might see<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">The theme stays the same, but the wording shifts.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">You may see:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u201cYour Macquarie Rewards will expire today\u201d<\/li>\n\n\n\n<li>\u201cRedeem points for a $100 gift card\u201d<\/li>\n\n\n\n<li>\u201cYou have been selected for a rewards upgrade\u201d<\/li>\n\n\n\n<li>\u201cRewards points pending confirmation\u201d<\/li>\n\n\n\n<li>\u201cRewards account locked, verify now\u201d<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">Some versions also use email attachments or QR codes to bypass link filtering.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Others push you to call a phone number, where a fake \u201csupport agent\u201d tries to extract login details verbally.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">No matter the variant, the safe rule is consistent: do not use message links to log into your bank.<\/p>\n\n\n\n<div id=\"mwtad1188972956\" class=\"gas_fallback-ad_309748-ad_309691-placement_360588\" style=\"margin-top: 30px;margin-bottom: 30px;\"><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-7750719144850257\" crossorigin=\"anonymous\"><\/script><ins class=\"adsbygoogle\" style=\"display:block;\" data-ad-client=\"ca-pub-7750719144850257\" \ndata-ad-slot=\"3906789406\" \ndata-ad-format=\"auto\" data-full-width-responsive=\"true\"><\/ins>\n<script> \n(adsbygoogle = window.adsbygoogle || []).push({}); \n<\/script>\n<\/div><h2 class=\"wp-block-heading\">What To Do If You Have Fallen Victim to This Scam<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">If you clicked the link, entered details, or shared an OTP, act as if your account is compromised and move quickly.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The goal is to cut off access, secure your identity, and limit any losses.<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>Stop interacting with the message and do not click again<\/strong><br \/>Close the browser tab. Do not reply to the SMS or email. Do not call any number shown in the message.<\/li>\n\n\n\n<li><strong>Log into your bank using a trusted route, not the link<\/strong><br \/>Open your banking app directly or type the bank\u2019s official website address yourself.<br \/>If you are unsure, use a saved bookmark you created previously, not a search ad.<\/li>\n\n\n\n<li><strong>Change your banking password immediately<\/strong><br \/>Use a strong, unique password you have never used anywhere else.<br \/>If the bank supports passkeys or stronger authentication options, enable them.<\/li>\n\n\n\n<li><strong>Change passwords for any reused credentials<\/strong><br \/>If you used the same password on email, shopping sites, or other banks, change those too.<br \/>Credential reuse is one of the fastest ways a phishing incident becomes a wider takeover.<\/li>\n\n\n\n<li><strong>Review account activity and look for subtle changes<\/strong><br \/>Check for anything you did not do, including:\n<ul class=\"wp-block-list\">\n<li>New payees or edited payee details<\/li>\n\n\n\n<li>New scheduled transfers<\/li>\n\n\n\n<li>Changes to your email address or phone number<\/li>\n\n\n\n<li>Alerts that were turned off<\/li>\n\n\n\n<li>Unknown devices or sessions (if your bank shows them)<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li><strong>Contact the bank through official support channels<\/strong><br \/>Use the phone number on the back of your card, inside the official app, or on official bank statements.<br \/>Tell them you entered credentials into a phishing page and ask them to:\n<ul class=\"wp-block-list\">\n<li>Add extra monitoring to your profile<\/li>\n\n\n\n<li>Confirm no new payees were added<\/li>\n\n\n\n<li>Confirm no contact details were changed<\/li>\n\n\n\n<li>Block transfers if any are pending<\/li>\n\n\n\n<li>Guide you through any required security reset<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li><strong>If you shared an OTP, treat it as high risk<\/strong><br \/>An OTP entered into a phishing flow often means the attacker already attempted or completed a login.<br \/>Ask the bank to review recent login events and force logout on all devices if possible.<\/li>\n\n\n\n<li><strong>Turn on transaction alerts and lower your risk window<\/strong><br \/>Enable notifications for:\n<ul class=\"wp-block-list\">\n<li>New payees<\/li>\n\n\n\n<li>Transfers above $0<\/li>\n\n\n\n<li>Login from a new device<\/li>\n\n\n\n<li>Profile changes<br \/>Alerts are not just convenience. They are early warning systems.<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li><strong>Scan your device and update your software<\/strong><br \/>Most phishing is web based and does not install malware, but it is still smart to:\n<ul class=\"wp-block-list\">\n<li>Update your operating system<\/li>\n\n\n\n<li>Update your browser<\/li>\n\n\n\n<li>Run a reputable security scan<\/li>\n\n\n\n<li>Remove unknown browser extensions<br \/>If you installed anything during the process, uninstall it immediately.<\/li>\n<\/ul>\n<\/li>\n\n\n\n<li><strong>If you entered card details, request new card numbers<\/strong><br \/>If the fake page asked for card number and CVV, assume it can be used for fraudulent purchases.<br \/>Ask your bank about canceling the card and issuing a new one.<\/li>\n\n\n\n<li><strong>Document what happened while details are fresh<\/strong><br \/>Take screenshots of the message and any pages you saw.<br \/>Write down dates, times, the phone number or email address used, and any links (do not click them again).<\/li>\n\n\n\n<li><strong>Report the phishing attempt to the appropriate authorities and platforms<\/strong><br \/>Reporting helps reduce future victims and can support investigations.<br \/>You can report the SMS as spam through your phone, forward suspicious emails to your email provider\u2019s abuse process, and report the scam through consumer fraud channels in your country.<\/li>\n\n\n\n<li><strong>Watch for follow up scams in the next 30 days<\/strong><br \/>After a phishing attempt, criminals often try again with:<\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Fake \u201cfraud department\u201d calls<\/li>\n\n\n\n<li>\u201cAccount locked\u201d emails<\/li>\n\n\n\n<li>Refund scams claiming they can recover your money<br \/>Stay skeptical of any inbound message that pushes urgency.<\/li>\n<\/ul>\n\n\n\n<ol start=\"14\" class=\"wp-block-list\">\n<li><strong>If money was stolen, act fast and stay persistent<\/strong><br \/>Ask the bank about dispute processes and any recall options for transfers.<br \/>Time matters. The sooner you report, the higher the chance funds can be intercepted.<\/li>\n<\/ol>\n\n\n<div id=\"mwtad2767785999\" class=\"gas_fallback-ad_318930-ad_309691-placement_360589\" style=\"margin-top: 30px;margin-bottom: 30px;\"><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-7750719144850257\" crossorigin=\"anonymous\"><\/script><ins class=\"adsbygoogle\" style=\"display:block;\" data-ad-client=\"ca-pub-7750719144850257\" \ndata-ad-slot=\"3818335085\" \ndata-ad-format=\"auto\" data-full-width-responsive=\"true\"><\/ins>\n<script> \n(adsbygoogle = window.adsbygoogle || []).push({}); \n<\/script>\n<\/div><h2>Is Your Device Infected? Run a Free Malware Scan<\/h2>\n\n<p>Slow performance, constant pop-ups, or strange behavior? These are classic signs of a malware infection. The fastest way to find out is to scan your device with <strong>Malwarebytes Anti-Malware Free<\/strong> \u2014 one of the most trusted malware removal tools available.<\/p>\n\n<p>The free version detects and removes the most common threats, including:<\/p>\n\n<ul>\n<li><strong>Adware<\/strong> \u2014 the cause of those annoying pop-ups<\/li>\n<li><strong>Browser hijackers<\/strong> \u2014 unwanted redirects and changed homepages<\/li>\n<li><strong>Trojans and spyware<\/strong> \u2014 hidden programs stealing your data<\/li>\n<li><strong>Potentially unwanted programs (PUPs)<\/strong> \u2014 software you never asked for<\/li>\n<\/ul>\n\n<p>\ud83d\udc49 <strong>Select your device below<\/strong> \u2014 Windows, Mac, or Android \u2014 then follow the simple steps to download Malwarebytes, scan your system, and remove any threats it finds. The whole process takes about 5 minutes.<\/p>\n\n<div class=\"su-tabs su-tabs-style-default su-tabs-mobile-stack\" data-active=\"1\" data-scroll-offset=\"0\" data-anchor-in-url=\"no\"><div class=\"su-tabs-nav\"><span class=\"\" data-url=\"\" data-target=\"blank\" tabindex=\"0\" role=\"button\">Malwarebytes for Windows<\/span><span class=\"\" data-url=\"\" data-target=\"blank\" tabindex=\"0\" role=\"button\">Malwarebytes for Mac<\/span><span class=\"\" data-url=\"\" data-target=\"blank\" tabindex=\"0\" role=\"button\">Malwarebytes for Android<\/span><\/div><div class=\"su-tabs-panes\"><div class=\"su-tabs-pane su-u-clearfix su-u-trim\" data-title=\"Malwarebytes for Windows\">\n\n<h3 id=\"windowsh3\" class=\"toch3\">Run a Malware Scan with Malwarebytes for Windows<\/h3>\n\n\n<p class=\"wp-block-paragraph\"><strong>Malwarebytes<\/strong> is one of the most popular and trusted anti-malware tools for Windows \u2014 and it&#8217;s completely free for removing infections. It catches threats that many antivirus programs miss, including adware, browser hijackers, and trojans. Follow the steps below to scan and clean your PC in just a few minutes.<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li><p class=\"mwt_quick_overview\">Download Malwarebytes<\/p> <p>Click the button below to download the latest version of <strong>Malwarebytes for Windows<\/strong> from the official source. The free version is all you need \u2014 it will scan your computer and remove adware, browser hijackers, and other malicious software at no cost.<\/p> <div class=\"mwt_download_box\"><figure><img decoding=\"async\" title=\"Malwarebytes Icon\" width=\"40\" height=\"40\" class=\"alignleft size-full wp-image-81150 mwt_product_icon_logo\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2018\/06\/Malwarebytes-LOGO.png\" alt=\"Malwarebytes Logo\"\/><\/figure> <strong><a class=\"\" href=\"https:\/\/malwaretips.com\/downloads\/MBSetup-076886.076886-consumer.exe\" onclick=\"window.open('https:\/\/malwaretips.com\/get\/malwarebytes-free');\">DOWNLOAD MALWAREBYTES FOR WINDOWS (FREE)<br \/>\n<\/a><\/strong><br \/><em class=\"small-text-disclaimer\">(The link opens in a new page where your download will start)<\/em><\/div><\/li>\n\n\n\n<li> <p class=\"mwt_quick_overview\">Install Malwarebytes<\/p>\n\n<p>When the download finishes, open your <strong>Downloads<\/strong> folder and <strong>double-click the MBSetup file<\/strong>. If Windows shows a <strong>User Account Control<\/strong> pop-up, click &#8220;<em>Yes<\/em>&#8221; to allow the installation.<\/p>\n\n \n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"975\" height=\"500\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM1.jpg\" alt=\"\" class=\"wp-image-285934\" title=\"\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM1.jpg 975w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM1-300x154.jpg 300w\" sizes=\"(max-width: 975px) 100vw, 975px\" \/><\/figure>\n \n\n \n  \n\n<\/li>\n\n\n\n<li><p class=\"mwt_quick_overview\">Follow the On-Screen Prompts to Install Malwarebytes<\/p> \n\n<p>The setup wizard will walk you through a few quick screens:<\/p>\n\n<ul>\n \n  <li>\n    <p>Choose where you&#8217;re installing the program \u2014 &#8220;<strong>Personal Computer<\/strong>&#8221; or &#8220;<strong>Work Computer<\/strong>&#8221; \u2014 then click <strong>Next<\/strong>.<\/p>\n    \n    <figure class=\"wp-block-image size-full\">\n      <img decoding=\"async\" width=\"737\" height=\"500\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM3-1.jpg\" alt=\"\" class=\"wp-image-285953\" title=\"\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM3-1.jpg 737w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM3-1-300x204.jpg 300w\" sizes=\"(max-width: 737px) 100vw, 737px\" \/>\n    <\/figure>\n    \n  <\/li>\n  <li>\n    <p>Malwarebytes will now install on your device. This usually takes under a minute.<\/p>\n    \n    <figure class=\"wp-block-image size-full\">\n      <img decoding=\"async\" width=\"759\" height=\"500\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM4.jpg\" alt=\"\" class=\"wp-image-285937\" title=\"\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM4.jpg 759w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM4-300x198.jpg 300w\" sizes=\"(max-width: 759px) 100vw, 759px\" \/>\n    <\/figure>\n    \n  <\/li>\n  <li>\n    <p>When installation is complete, the &#8220;<strong>Welcome to Malwarebytes<\/strong>&#8221; screen will open automatically.<\/p>\n    \n    <figure class=\"wp-block-image size-full\">\n      <img decoding=\"async\" width=\"705\" height=\"500\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM6-1.jpg\" alt=\"\" class=\"wp-image-285951\" title=\"\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM6-1.jpg 705w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM6-1-300x213.jpg 300w\" sizes=\"(max-width: 705px) 100vw, 705px\" \/>\n    <\/figure>\n    \n  <\/li>\n  <li>\n    <p>On the final screen, click <strong>Open Malwarebytes<\/strong> to launch the program.<\/p>\n    \n    <figure class=\"wp-block-image size-full\">\n      <img decoding=\"async\" width=\"749\" height=\"500\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM5-1.jpg\" alt=\"\" class=\"wp-image-285952\" title=\"\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM5-1.jpg 749w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM5-1-300x200.jpg 300w\" sizes=\"(max-width: 749px) 100vw, 749px\" \/>\n    <\/figure>\n    \n  <\/li>\n<\/ul>\n\n<\/li>\n\n\n\n<li><p class=\"mwt_quick_overview\">Enable &#8220;Scan for Rootkits&#8221;<\/p>\n<p>Before scanning, turn on rootkit detection so Malwarebytes can find even the most hidden threats. Click the <strong>Settings<\/strong> gear icon on the left side of the screen.\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"842\" height=\"600\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM8.jpg\" alt=\"\" class=\"wp-image-285942\" title=\"\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM8.jpg 842w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM8-300x214.jpg 300w\" sizes=\"(max-width: 842px) 100vw, 842px\" \/><\/figure>\n<\/p>\n\n\n\n<p>In the settings menu, find &#8220;<strong>Scan for rootkits<\/strong>&#8221; and click the toggle so it turns blue.\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"841\" height=\"600\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM9.jpg\" alt=\"\" class=\"wp-image-285943\" title=\"\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM9.jpg 841w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM9-300x214.jpg 300w\" sizes=\"(max-width: 841px) 100vw, 841px\" \/><\/figure>\n <\/p>\n\n\n\n<p>Done? Click &#8220;<strong>Dashboard<\/strong>&#8221; in the left pane to return to the main screen.\n\n <\/p><\/li>\n\n\n\n<li><p class=\"mwt_quick_overview\">Start the Scan<\/p> <p>Click the blue <strong>Scan<\/strong> button. Malwarebytes will automatically update its virus database and start checking your computer for malware.<\/p>\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"849\" height=\"600\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM10.jpg\" alt=\"\" class=\"wp-image-285941\" title=\"\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM10.jpg 849w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM10-300x212.jpg 300w\" sizes=\"(max-width: 849px) 100vw, 849px\" \/><\/figure>\n<\/li>\n\n\n\n<li>\n<p class=\"mwt_quick_overview\">Wait for the Scan to Finish<\/p>\n<p>The scan checks your entire system for browser hijackers and other malicious programs, so it can take several minutes. Feel free to do something else \u2014 just check back occasionally to see the progress.<\/p>\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"842\" height=\"600\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM11.jpg\" alt=\"\" class=\"wp-image-285944\" title=\"\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM11.jpg 842w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM11-300x214.jpg 300w\" sizes=\"(max-width: 842px) 100vw, 842px\" \/><\/figure>\n<\/li>\n\n\n\n<li>\n<p class=\"mwt_quick_overview\">Quarantine the Detected Threats<\/p>\n<p>When the scan is done, you&#8217;ll see a list of everything Malwarebytes found \u2014 malware, adware, and potentially unwanted programs. Click the &#8220;<strong>Quarantine<\/strong>&#8221; button to remove all of them at once.<\/p>\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"844\" height=\"600\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM12.jpg\" alt=\"\" class=\"wp-image-285945\" title=\"\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM12.jpg 844w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM12-300x213.jpg 300w\" sizes=\"(max-width: 844px) 100vw, 844px\" \/><\/figure>\n\n\n<p>Malwarebytes will now remove the malicious files and registry entries and move them safely into quarantine.\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"842\" height=\"600\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM13.jpg\" alt=\"\" class=\"wp-image-285946\" title=\"\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM13.jpg 842w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM13-300x214.jpg 300w\" sizes=\"(max-width: 842px) 100vw, 842px\" \/><\/figure>\n <\/p><\/li>\n\n\n\n<li>\n  <p class=\"mwt_quick_overview\">Restart Your Computer<\/p>\n  <p>Some threats can only be fully removed after a reboot. If Malwarebytes asks you to restart, click <strong>Yes<\/strong>. Once you&#8217;re logged back in, your PC is clean and you can continue with the next steps in this guide.<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"844\" height=\"600\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM14.jpg\" alt=\"\" class=\"wp-image-285947\" title=\"\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM14.jpg 844w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2024\/05\/MBAM14-300x213.jpg 300w\" sizes=\"(max-width: 844px) 100vw, 844px\" \/><\/figure>\n<\/li>\n<\/ol>\n\n\n<p>When the scan finishes, click <strong>Quarantine<\/strong> to remove everything Malwarebytes found. That&#8217;s it \u2014 your Windows PC is now clean of trojans, adware, and other malware, and should be back to running smoothly.<\/p>\n\n\n<p class=\"wp-block-paragraph\">If your current antivirus allowed this malicious program on your computer, you may want to consider purchasing Malwarebytes Premium to protect against these types of threats in the future.<br \/>If you are still having problems with your computer after completing these instructions, then please follow one of the steps:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Run a computer scan with <strong><a href=\"https:\/\/www.eset.com\/us\/home\/online-scanner\/\" target=\"_blank\" rel=\"noopener noreferrer\">ESET Online Scanner<\/a><\/strong><\/li><li>Ask for help in our <strong><a title=\"Malware Removal Assistance for Windows\" href=\"https:\/\/malwaretips.com\/forums\/windows-malware-removal-help-support.10\/\" target=\"_blank\" rel=\"noopener noreferrer\">Windows Malware Removal Help &amp; Support<\/a><\/strong> forum.<\/li><\/ul>\n\n\n<\/div>\n<div class=\"su-tabs-pane su-u-clearfix su-u-trim\" data-title=\"Malwarebytes for Mac\">\n\n<h3 id=\"mach3\" class=\"toch3\">Run a Malware Scan with Malwarebytes for Mac<\/h3>\n\n\n<p class=\"wp-block-paragraph\"><strong>Malwarebytes for Mac<\/strong> is a free on-demand scanner that removes the malware other security software tends to miss \u2014 adware, browser hijackers, and unwanted programs included. Cleaning an infected Mac with Malwarebytes has always been completely free, and it&#8217;s our go-to recommendation. Follow the steps below to scan and clean your Mac in just a few minutes.<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li>\n<p class=\"mwt_quick_overview\">Download Malwarebytes for Mac<\/p>\n<p>Click the button below to download the latest version of <strong>Malwarebytes for Mac<\/strong>.<\/p>\n<div class=\"mwt_download_box\"><figure><img decoding=\"async\" class=\"alignleft size-full wp-image-81150 mwt_product_icon_logo\" title=\"Malwarebytes Icon\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2018\/06\/Malwarebytes-LOGO.png\" alt=\"Malwarebytes Logo\" width=\"40\" height=\"40\"\/><\/figure><strong><a href=\"https:\/\/prf.hn\/click\/camref:1011lvqrV\/creativeref:1011l100234\" target=\"_blank\" rel=\"noopener noreferrer\">DOWNLOAD MALWAREBYTES FOR MAC (FREE)<\/a><\/strong><br \/><em>(The link opens in a new page where your download will start)<\/em><\/div>\n<\/li>\n\n\n\n<li>\n<p class=\"mwt_quick_overview\">Open the Malwarebytes setup file<\/p>\n<p>When the download finishes, open your <em>Downloads<\/em> folder and <strong>double-click the setup file<\/strong> to begin the installation.<\/p>\n<figure><img decoding=\"async\" class=\"size-full wp-image-98734 alignnone\" title=\"Double-click on setup file to install Malwarebytes\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Installer.jpg\" alt=\"Double-click on setup file to install Malwarebytes\" width=\"750\" height=\"424\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Installer.jpg 750w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Installer-300x170.jpg 300w\" sizes=\"(max-width: 750px) 100vw, 750px\" \/><\/figure><p><\/p>\n<\/li>\n\n\n\n<li>\n<p class=\"mwt_quick_overview\">Follow the On-Screen Prompts to Install Malwarebytes<\/p>\n<p>The <em>Malwarebytes for Mac Installer<\/em> will guide you through a few quick screens. Click &#8220;<strong>Continue<\/strong>&#8221; and keep following the prompts until the installation completes.<\/p>\n<figure><img decoding=\"async\" class=\"size-full wp-image-98735 alignnone\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Installer-Step-1.jpg\" alt=\"Click Continue to install Malwarebytes for Mac\" width=\"750\" height=\"532\" title=\"\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Installer-Step-1.jpg 750w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Installer-Step-1-300x213.jpg 300w\" sizes=\"(max-width: 750px) 100vw, 750px\" \/><\/figure><p><\/p>\n<figure><img decoding=\"async\" class=\"size-full wp-image-98736 alignnone\" title=\"Click again on Continue to install Malwarebytes for Mac for Mac\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Installer-Step-2.jpg\" alt=\"Click again on Continue to install Malwarebytes for Mac\" width=\"750\" height=\"531\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Installer-Step-2.jpg 750w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Installer-Step-2-300x212.jpg 300w\" sizes=\"(max-width: 750px) 100vw, 750px\" \/><\/figure><p><\/p>\n<figure><img decoding=\"async\" class=\"size-full wp-image-98737 alignnone\" title=\"Click Install to install Malwarebytes on Mac\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Installer-Step-4.jpg\" alt=\"Click Install to install Malwarebytes on Mac\" width=\"750\" height=\"531\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Installer-Step-4.jpg 750w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Installer-Step-4-300x212.jpg 300w\" sizes=\"(max-width: 750px) 100vw, 750px\" \/><\/figure><p><\/p>\n<p>When the installation is complete, Malwarebytes opens to the <em>Welcome to Malwarebytes<\/em> screen. Click &#8220;<strong>Get started<\/strong>&#8220;.<\/p>\n<\/li>\n\n\n\n<li>\n<p class=\"mwt_quick_overview\">Select &#8220;Personal Computer&#8221; or &#8220;Work Computer&#8221;<\/p>\n<p>Malwarebytes will ask what type of computer you&#8217;re installing it on. Click either <strong>Personal Computer<\/strong> or <strong>Work Computer<\/strong>, whichever applies.<br \/><img decoding=\"async\" class=\"size-full wp-image-98740 alignnone\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Select-Personal-Computer.jpg\" alt=\"Select Personal Computer or Work Computer mac\" width=\"750\" height=\"537\" title=\"\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Select-Personal-Computer.jpg 750w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Select-Personal-Computer-300x215.jpg 300w\" sizes=\"(max-width: 750px) 100vw, 750px\" \/><\/p>\n<\/li>\n\n\n\n<li>\n<p class=\"mwt_quick_overview\">Start the Scan<\/p>\n<p>Click the &#8220;<strong>Scan<\/strong>&#8221; button. Malwarebytes will automatically update its detection database and begin checking your Mac for malware.<br \/><img decoding=\"async\" class=\"size-full wp-image-98733 alignnone\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Click-Scan.jpg\" alt=\"Click on Scan button to start a system scan Mac\" width=\"750\" height=\"538\" title=\"\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Click-Scan.jpg 750w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Click-Scan-300x215.jpg 300w\" sizes=\"(max-width: 750px) 100vw, 750px\" \/><\/p>\n<\/li>\n\n\n\n<li>\n<p class=\"mwt_quick_overview\">Wait for the Scan to Finish<\/p>\n<p>Malwarebytes will scan your Mac for adware, browser hijackers, and other malicious programs. This can take a few minutes, so feel free to do something else \u2014 just check back occasionally to see the progress.<br \/><img decoding=\"async\" class=\"size-full wp-image-98739 alignnone\" title=\"Wait for Malwarebytes for Mac to scan your computer\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Scanning-for-malware.jpg\" alt=\"Wait for Malwarebytes for Mac to scan for malware\" width=\"750\" height=\"536\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Scanning-for-malware.jpg 750w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Scanning-for-malware-300x214.jpg 300w\" sizes=\"(max-width: 750px) 100vw, 750px\" \/><\/p>\n<\/li>\n\n\n\n<li>\n<p class=\"mwt_quick_overview\">Quarantine the Detected Threats<\/p>\n<p>When the scan is done, you&#8217;ll see a list of everything Malwarebytes found. Click the &#8220;<strong>Quarantine<\/strong>&#8221; button to remove all the threats at once.<br \/><img decoding=\"async\" class=\"size-full wp-image-98732 alignnone\" title=\"Review the malicious programs and click on Quarantine\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Click-Confirm.jpg\" alt=\"Review the malicious programs and click on Quarantine to remove malware\" width=\"750\" height=\"538\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Click-Confirm.jpg 750w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Click-Confirm-300x215.jpg 300w\" sizes=\"(max-width: 750px) 100vw, 750px\" \/><\/p>\n<\/li>\n\n\n\n<li> <p class=\"mwt_quick_overview\">Restart Your Mac<\/p> <p>Malwarebytes will now remove all the malicious files it found. Some threats can only be fully removed after a reboot \u2014 if Malwarebytes asks you to restart, allow it. Once you&#8217;re logged back in, your Mac is clean.<br \/><img decoding=\"async\" width=\"750\" height=\"536\" class=\"size-full wp-image-98738 alignnone\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Restart.jpg\" alt=\"Malwarebytes For Mac requesting to restart computer\" title=\"\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Restart.jpg 750w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2019\/11\/Malwarebytes-Mac-Restart-300x214.jpg 300w\" sizes=\"(max-width: 750px) 100vw, 750px\" \/><br \/><\/p> <\/li>\n<\/ol>\n\n\n<p>Once the scan is done, remove every threat it detected. Your Mac is now free of adware, rogue browser extensions, and other potentially harmful software.<\/p>\n\n\n<p class=\"wp-block-paragraph\">If your current antivirus allowed a malicious program on your computer, you might want to consider purchasing the full-featured version of Malwarebytes Anti-Malware to protect against these types of threats in the future.<br \/>If you are still experiencing problems while trying to remove a malicious program from your computer, please ask for help in our <strong><a title=\"Mac Malware Removal Help &amp; Support\" href=\"https:\/\/malwaretips.com\/forums\/mac-malware-removal-help-support.183\/\" target=\"_blank\" rel=\"noopener noreferrer\">Mac Malware Removal Help &amp; Support<\/a><\/strong> forum.<\/p>\n\n\n<\/div>\n<div class=\"su-tabs-pane su-u-clearfix su-u-trim\" data-title=\"Malwarebytes for Android\">\n\n<h3 id=\"androidh3\" class=\"toch3\">Run a Malware Scan with Malwarebytes for Android<\/h3>\n\n<p>Malwarebytes for Android automatically detects and removes dangerous threats like malware and ransomware so you don&#8217;t have to worry about your most-used device being compromised. Aggressive detection of adware and potentially unwanted programs keeps your Android phone or tablet running smooth.<\/p>\n\n\n<ol class=\"wp-block-list\">\n<li>\n<p class=\"mwt_quick_overview\">Download Malwarebytes for Android.<\/p>\n<p>You can download <strong>Malwarebytes for Android<\/strong> by clicking the link below.<\/p>\n<figure><img decoding=\"async\" class=\"alignleft size-full wp-image-81150 mwt_product_icon_logo\" title=\"Malwarebytes Icon\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2018\/06\/Malwarebytes-LOGO.png\" alt=\"Malwarebytes Logo\" width=\"40\" height=\"40\"\/><\/figure><div class=\"mwt_download_box\"><strong><a href=\"https:\/\/play.google.com\/store\/apps\/details?id=org.malwarebytes.antimalware&#038;hl=en\" target=\"_blank\" rel=\"noopener noreferrer\">MALWAREBYTES FOR ANDROID DOWNLOAD LINK<\/a><\/strong><br \/><em>(The above link will open a new page from where you can download Malwarebytes for Android)<\/em><\/div>\n<\/li>\n\n\n\n<li>\n<p class=\"mwt_quick_overview\">Install Malwarebytes for Android on your phone.<\/p>\n<p>In the Google Play Store, tap &#8220;<strong>Install<\/strong>&#8221; to install Malwarebytes for Android on your device.<\/p>\n<figure><img decoding=\"async\" class=\"alignnone size-full wp-image-106940\" title=\"Tap Install to install Malwarebytes for Android\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Google-Play-App.jpg\" alt=\"Tap Install to install Malwarebytes for Android\" width=\"292\" height=\"580\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Google-Play-App.jpg 292w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Google-Play-App-151x300.jpg 151w\" sizes=\"(max-width: 292px) 100vw, 292px\" \/><\/figure><p><\/p>\n<p>When the installation process has finished, tap &#8220;<strong>Open<\/strong>&#8221; to begin using Malwarebytes for Android. You can also open Malwarebytes by tapping on its icon in your phone menu or home screen.<br \/><img decoding=\"async\" class=\"alignnone size-full wp-image-106941\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Open-App.jpg\" alt=\"Malwarebytes for Android - Open App\" width=\"292\" height=\"578\" title=\"\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Open-App.jpg 292w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Open-App-152x300.jpg 152w\" sizes=\"(max-width: 292px) 100vw, 292px\" \/><\/p>\n<\/li>\n\n\n\n<li>\n<p class=\"mwt_quick_overview\">Follow the on-screen prompts to complete the setup process<\/p>\n<p>When Malwarebytes will open, you will see the <em>Malwarebytes Setup Wizard<\/em> which will guide you through a series of permissions and other setup options.<br \/>This is the first of two screens that explain the difference between the Premium and Free versions. Swipe this screen to continue.<br \/><img decoding=\"async\" class=\"alignnone size-full wp-image-106944\" title=\"Malwarebytes Setup Screen 1\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Setup-Wizard-1.jpg\" alt=\"Malwarebytes Setup Screen 1\" width=\"292\" height=\"577\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Setup-Wizard-1.jpg 292w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Setup-Wizard-1-152x300.jpg 152w\" sizes=\"(max-width: 292px) 100vw, 292px\" \/><br \/>Tap on &#8220;<strong>Got it<\/strong>&#8221; to proceed to the next step.<br \/><img decoding=\"async\" class=\"alignnone size-full wp-image-106945\" title=\"Malwarebytes Setup Screen 2\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Setup-Wizard-2.jpg\" alt=\"Malwarebytes Setup Screen 2\" width=\"292\" height=\"580\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Setup-Wizard-2.jpg 292w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Setup-Wizard-2-151x300.jpg 151w\" sizes=\"(max-width: 292px) 100vw, 292px\" \/><br \/>Malwarebytes for Android will now ask for a set of permissions that are required to scan your device and protect it from malware. Tap on &#8220;<strong>Give permission<\/strong>&#8221; to continue.<br \/><img decoding=\"async\" class=\"alignnone size-full wp-image-106946\" title=\"Malwarebytes Setup Screen 3\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Setup-Wizard-3.jpg\" alt=\"Malwarebytes Setup Screen 3\" width=\"292\" height=\"570\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Setup-Wizard-3.jpg 292w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Setup-Wizard-3-154x300.jpg 154w\" sizes=\"(max-width: 292px) 100vw, 292px\" \/><br \/>Tap on &#8220;Allow&#8221; to permit Malwarebytes to access the files on your phone.<br \/><img decoding=\"async\" class=\"alignnone size-full wp-image-106947\" title=\"Malwarebytes Setup Screen 4\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Setup-Wizard-7.jpg\" alt=\"Malwarebytes Setup Screen 4\" width=\"292\" height=\"573\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Setup-Wizard-7.jpg 292w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Setup-Wizard-7-153x300.jpg 153w\" sizes=\"(max-width: 292px) 100vw, 292px\" \/><\/p>\n<\/li>\n\n\n\n<li>\n<p class=\"mwt_quick_overview\">Update database and run a scan with Malwarebytes for Android<\/p>\n<p>You will now be prompted to update the Malwarebytes database and run a full system scan.<\/p>\n<figure><img decoding=\"async\" class=\"alignnone size-full wp-image-106939\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Fix-Issues.jpg\" alt=\"Malwarebytes fix issue\" width=\"292\" height=\"579\" title=\"\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Fix-Issues.jpg 292w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Fix-Issues-151x300.jpg 151w\" sizes=\"(max-width: 292px) 100vw, 292px\" \/><\/figure><p><\/p>\n<p>Click on &#8220;<strong>Update database<\/strong>&#8221; to update the Malwarebytes for Android definitions to the latest version, then click on &#8220;<strong>Run full scan<\/strong>&#8221; to perform a system scan.<\/p>\n<figure><img decoding=\"async\" class=\"alignnone size-full wp-image-106948\" title=\"Update database and run Malwarebytes scan\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Update-Run-Scan.jpg\" alt=\"Update database and run Malwarebytes scan on phone\" width=\"291\" height=\"575\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Update-Run-Scan.jpg 291w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Update-Run-Scan-152x300.jpg 152w\" sizes=\"(max-width: 291px) 100vw, 291px\" \/><\/figure><p><\/p>\n<\/li>\n\n\n\n<li>\n<p class=\"mwt_quick_overview\">Wait for the Malwarebytes scan to complete.<\/p>\n<p>Malwarebytes will now start scanning your phone for adware and other malicious apps. This process can take a few minutes, so we suggest you do something else and periodically check on the status of the scan to see when it is finished.<br \/><img decoding=\"async\" class=\"alignnone size-full wp-image-106943\" title=\"Malwarebytes scanning phone for malware\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Scanning-for-Malware.jpg\" alt=\"Malwarebytes scanning Android for Vmalware\" width=\"292\" height=\"579\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Scanning-for-Malware.jpg 292w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Scanning-for-Malware-151x300.jpg 151w\" sizes=\"(max-width: 292px) 100vw, 292px\" \/><\/p>\n<\/li>\n\n\n\n<li>\n<p class=\"mwt_quick_overview\">Click on &#8220;Remove Selected&#8221;.<\/p>\n<p>When the scan has been completed, you will be presented with a screen showing the malware infections that Malwarebytes for Android has detected. To remove the malicious apps that Malwarebytes has found, tap on the &#8220;<strong>Remove Selected<\/strong>&#8221; button.<br \/><img decoding=\"async\" class=\"alignnone size-full wp-image-106942\" title=\"Tap on the Remove button to get rid of malware\" src=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Removing-Malware.jpg\" alt=\"Remove malware from your phone\" width=\"760\" height=\"600\" srcset=\"https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Removing-Malware.jpg 760w, https:\/\/malwaretips.com\/blogs\/wp-content\/uploads\/2020\/05\/Malwarebytes-for-Android-Removing-Malware-300x237.jpg 300w\" sizes=\"(max-width: 760px) 100vw, 760px\" \/><\/p>\n<\/li>\n\n\n\n<li>\n<p class=\"mwt_quick_overview\">Restart your phone.<\/p>\n<p>Malwarebytes for Android will now remove all the malicious apps that it has found. To complete the malware removal process, Malwarebytes may ask you to restart your device.<\/p>\n<\/li>\n<\/ol>\n\n\n<hr \/>\n\n<p>After the scan, tap <strong>Remove Selected<\/strong> to delete all detected threats. Your Android phone is now clean \u2014 no more malicious apps, adware, or browser redirects.<\/p>\n\n\n<p class=\"wp-block-paragraph\">If your current antivirus allowed a malicious app on your phone, you may want to consider purchasing the full-featured version of Malwarebytes to protect against these types of threats in the future.<br \/>If you are still having problems with your phone after completing these instructions, then please follow one of the steps:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Restore your phone to factory settings by going to <em>Settings &gt; General management &gt; Reset &gt; Factory data reset.<\/em><\/li><li>Ask for help in our <strong><a title=\"Mobile Malware Removal Help &amp; Support\" href=\"https:\/\/malwaretips.com\/forums\/mobile-malware-removal-help-support.165\/\" target=\"_blank\" rel=\"noopener noreferrer\">Mobile Malware Removal Help &amp; Support<\/a><\/strong> forum.<\/li><\/ul>\n\n\n<\/div><\/div><\/div>\n\n<h3>Stay Protected: Block Ads and Malicious Sites<\/h3>\n\n<p>Now that your device is clean, keep it that way. Most infections start with a malicious ad or a fake download button \u2014 so blocking them at the source is your best defense.<\/p>\n\n<p>We recommend <a href=\"https:\/\/adguard.com\/?aid=29616\" target=\"_blank\" rel=\"sponsored nofollow noopener noreferrer\"><strong>AdGuard<\/strong><\/a>, which blocks malicious ads, phishing pages, and dangerous redirects before they can reach you.<\/p>\n\n<p>\ud83d\udc49 <a href=\"https:\/\/adguard.com\/?aid=29616\" target=\"_blank\" rel=\"sponsored nofollow noopener noreferrer\"><strong>Download AdGuard and browse safely<\/strong><\/a><\/p>\n\n\n<div id=\"mwtad3304198690\" class=\"gas_fallback-ad_381388-ad_309691-placement_381390\" style=\"margin-top: 30px;margin-bottom: 30px;\"><script async src=\"\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-7750719144850257\" crossorigin=\"anonymous\"><\/script><ins class=\"adsbygoogle\" style=\"display:block;\" data-ad-client=\"ca-pub-7750719144850257\" \ndata-ad-slot=\"3191649120\" \ndata-ad-format=\"auto\" data-full-width-responsive=\"true\"><\/ins>\n<script> \n(adsbygoogle = window.adsbygoogle || []).push({}); \n<\/script>\n<\/div><h2 class=\"wp-block-heading\">The Bottom Line<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">The \u201cMacquarie Bank Rewards\u201d points expiring alert is a classic phishing setup dressed in friendly loyalty language.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">It is not really about rewards. It is about getting you to click, sign in, and hand over the keys to your bank account.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">If you receive one of these messages, do not use the link. Open your banking app directly, check your real rewards balance, and delete the message.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">If you already interacted with it, treat it seriously, secure your account immediately, and contact your bank through official channels.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>It starts with a simple nudge that feels routine: a \u201crewards alert\u201d saying your points are about to expire. If you bank with Macquarie, or even if you do not, that message can still land &#8230; <\/p>\n<p class=\"read-more-container\"><a title=\"Macquarie Bank &#8220;Rewards Alert&#8221; Scam Texts EXPOSED (Investigation)\" class=\"read-more button\" href=\"https:\/\/malwaretips.com\/blogs\/macquarie-bank-rewards-alert-scam-texts-exposed-investigation\/#more-383747\" aria-label=\"Read more about Macquarie Bank &#8220;Rewards Alert&#8221; Scam Texts EXPOSED (Investigation)\">Read more<\/a><\/p>\n","protected":false},"author":50,"featured_media":383748,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"ai_generated_summary":"","footnotes":""},"categories":[49],"tags":[],"class_list":["post-383747","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-scam-reports","masonry-post","generate-columns","tablet-grid-50","mobile-grid-100","grid-parent","grid-50","resize-featured-image"],"_links":{"self":[{"href":"https:\/\/malwaretips.com\/blogs\/wp-json\/wp\/v2\/posts\/383747","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/malwaretips.com\/blogs\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/malwaretips.com\/blogs\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/malwaretips.com\/blogs\/wp-json\/wp\/v2\/users\/50"}],"replies":[{"embeddable":true,"href":"https:\/\/malwaretips.com\/blogs\/wp-json\/wp\/v2\/comments?post=383747"}],"version-history":[{"count":0,"href":"https:\/\/malwaretips.com\/blogs\/wp-json\/wp\/v2\/posts\/383747\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/malwaretips.com\/blogs\/wp-json\/wp\/v2\/media\/383748"}],"wp:attachment":[{"href":"https:\/\/malwaretips.com\/blogs\/wp-json\/wp\/v2\/media?parent=383747"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/malwaretips.com\/blogs\/wp-json\/wp\/v2\/categories?post=383747"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/malwaretips.com\/blogs\/wp-json\/wp\/v2\/tags?post=383747"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}