Accidental VirusTotal upload is a valuable reminder to double check what you share
We take a look at reports of a document being accidentally shared to the VirusTotal service and potentially exposing names and email addresses in the…
Category: MalwareBytes
Google fixes “Bad.Build” Cloud Build flaw, researchers say it’s not enough
Researchers have uncovered a privilege escalation vulnerability in Google Cloud Build that could enable malicious actors tamper with application images and infect users. Researchers at…
Microsoft validation error allowed state actor to access user email of government agencies and others
Due to a validation error in Microsoft code, a suspected Chinese attacker was able to access user email from approximately 25 organizations, including government agencies.…
how to keep your flight plans safe
We take a look at several scams targeting flyers off on their holidays, and how you can keep yourself safe. You may be getting ready…
Docker Hub images found to expose secrets and private keys
Researchers have found that numerous Docker images shared on Docker Hub expose sensitive data. Numerous Docker images shared on Docker Hub are exposing sensitive data,…
FakeSG enters the ‘FakeUpdates’ arena to deliver NetSupport RAT
A new campaign leveraging compromised WordPress sites emerges with another fake browser update. Over 5 years ago, we began tracking a new campaign that we…
Spy vs spy Exploring the LetMeSpy hack with maia arson crimew
This week on Lock and Code, we speak with maia arson crimew about the hack of the monitoring app LetMeSpy, which many have labeled as…
Act now! In-the-wild Zimbra vulnerability needs a workaround
Security experts are warning Zimbra users that a vulnerability for which there is no patch is being actively exploited in the wild. Security experts are…
Malwarebytes stops 100% of Advanced Threats in latest AV-Test assessment
The test evaluates products against the latest techniques used by data stealers and ransomware. AV-TEST, a leading independent tester of cybersecurity solutions, has just given Malwarebytes two…
Ransomware making big money through “big game hunting”
We take a look at reports that claim ransomware is making big money in 2023. Ransomware generates big money for the groups behind it, with…
Tax preparation firms shared sensitive information with Meta
Tax preparation firms shared personal and financial information with social media giant Meta A group of seven US senators has sent a letter to the…
Zero-day deploys remote code execution vulnerability via Word documents
We take a look at reports of an exploit being deployed via booby trapped Word documents. An unpatched zero-day vulnerability is currently being abused in…