Category: MalwareBytes

coldfusion vulnerability
06
Dec
2023

Adobe Coldfusion vulnerability used in attacks on government servers

The Cybersecurity and Infrastructure Security Agency (CISA) put out a Cybersecurity Advisory (CSA) to alert government agencies about cybercriminals using…

black cat showing its teeth
05
Dec
2023

Roblox and Twitch provider Tipalti breached by ransomware

Accounting software provider Tipalti says it is investigating a claim by ransomware group ALPHV that they have gained access to…

23andMe logo
05
Dec
2023

23andMe says, er, actually some genetic and health data might have been accessed in recent breach

In October we reported that the data of as many as seven million 23andMe customers were for sale on criminal…

The Lock and Code logo, which includes the Malwarebytes Labs insignia ensconced in a pair of headphones
04
Dec
2023

Why a ransomware gang tattled on its victim, with Allan Liska: Lock and Code S04E24

This week on the Lock and Code podcast… Like the grade-school dweeb who reminds their teacher to assign tonight’s homework,…

patching apple
04
Dec
2023

Update your iPhones! Apple fixes two zero-days in iOS

Apple has released emergency security updates for iOS 17.1.2 and iPadOS 17.1.2 to patch for two zero-day vulnerabilities that may…

posing for social media
04
Dec
2023

Social media giants to testify over failing to protect kids

US senators have urgently invited the CEOs of five of the major social media giants to testify about their failure…

week in security
04
Dec
2023

A week in security (November 27 – December 3)

December 1, 2023 – Domain fronting is a technique to hide the true origin of HTTPS requests by hiding the…

domain fronting are masked requests
01
Dec
2023

Explained: Domain fronting | Malwarebytes

Domain fronting is a technique of using different domain names on the same HTTPS connection. Put simply, domain fronting hides…

ChatGPT
30
Nov
2023

Will ChatGPT write ransomware? Yes.

This morning I decided to write some ransomware, and I asked ChatGPT to help. Not because I wanted to turn…

Avoid this "Casino Online Promotion" 419 Scam
30
Nov
2023

Associated Press, ESPN, CBS among top sites serving fake virus alerts

ScamClub is a threat actor who’s been involved in malvertising activities since 2018. Chances are you probably ran into one…

Meta logo
30
Nov
2023

Meta sued over forcing users to pay to stop tracking

Meta is required to get users’ consent in Europe in order to show them targeted ads. For this reason, Meta has…

Chrome
30
Nov
2023

Update now! Chrome fixes actively exploited zero-day vulnerability

Google has released an update to Chrome which includes seven security fixes including one for a vulnerability which is known…