3 crucial security steps people should do, but don’t
Cybersecurity could be as easy as 1-2-3. The problem, though, is that people have to want it. Cybersecurity could be as easy as 1-2-3. The…
Category: MalwareBytes
Clever malvertising attack uses Punycode to look like KeePass’s official website
Threat actors are doubling down on brand impersonation by using lookalike domain names. Threat actors are known for impersonating popular brands in order to trick users.…
The US wants governments to commit to not paying ransoms
The US is pushing member countries of the Counter Ransomware Initiative to stop paying ransoms to cybercriminals. As the White House prepares to host its…
Customer data stolen from gaming cloud host Shadow
Cloud service provider Shadow has notified customers about a data breach affecting over 500,000 users. Cloud infrastructure provider Shadow has warned of the data theft of…
The forgotten malvertising campaign
A sophisticated threat actor has been using Google ads to deliver custom malware payloads to victims for months while flying under the radar. In recent…
Explained: Quishing
We explain what quishing is and provide information about some current quishing campaigns. Quishing is phishing using QR (Quick Response) codes. QR codes are basically two-dimensional…
Giant health insurer struck by ransomware didn’t have antivirus protection
The Philippine Health Insurance Corporation (PhilHealth), has confirmed that it was unprotected by antivirus software when it was attacked by the Medusa ransomware group in…
Update now! Atlassian Confluence vulnerability is being actively exploited
Microsoft Threat Intelligence has revealed that it has been tracking the active exploitation of a vulnerability in Atlassian Confluence software since September 14, 2023. Microsoft…
CISA catalog passed 1,000 known to be exploited vulnerabilities. Celebration time, or is it?
The CISA Known Exploited Vulnerabilities catalog has grown to cover more than 1,000 vulnerabilities since its launch in November 2021. On September 18, 2023, the…
Stalkerware activity drops as glaring spying problem is revealed
North America has a spying problem. Its perpetrators are everyday people. North America has a spying problem. Its perpetrators are everyday people. According to recent…
Ransomware review: October 2023
In September, two high-profile casino breaches taught us about the nuances of the RaaS affiliate landscape, the asymmetric dangers of phishing, and of two starkly…
23andMe users’ data stolen, offered for sale
Information belonging to as many as seven million 23andMe customers has been put up for sale on criminal forums following a credential stuffing attack. Information…