IT administrators’ passwords are awful too
Are IT administrators any better at coming up with decent passwords? Research says they aren’t. The key is under the...
Read more →Category: MalwareBytes
Cisco IOS XE vulnerability widely exploited in the wild
Researchers have found that a recently disclosed vulnerability in Cisco IOS XE has already rendered thousands of compromised devices. An...
Read more →
3 crucial security steps people should do, but don’t
Cybersecurity could be as easy as 1-2-3. The problem, though, is that people have to want it. Cybersecurity could be...
Read more →
Clever malvertising attack uses Punycode to look like KeePass’s official website
Threat actors are doubling down on brand impersonation by using lookalike domain names. Threat actors are known for impersonating popular...
Read more →
The US wants governments to commit to not paying ransoms
The US is pushing member countries of the Counter Ransomware Initiative to stop paying ransoms to cybercriminals. As the White...
Read more →
A week in security (October 9 – October 15)
Last week on Malwarebytes Labs: Explained: Quishing Update now! Atlassian Confluence vulnerability is being actively exploited Giant health insurer struck...
Read more →
Customer data stolen from gaming cloud host Shadow
Cloud service provider Shadow has notified customers about a data breach affecting over 500,000 users. Cloud infrastructure provider Shadow has...
Read more →
The forgotten malvertising campaign
A sophisticated threat actor has been using Google ads to deliver custom malware payloads to victims for months while flying...
Read more →
Explained: Quishing
We explain what quishing is and provide information about some current quishing campaigns. Quishing is phishing using QR (Quick Response) codes....
Read more →
Giant health insurer struck by ransomware didn’t have antivirus protection
The Philippine Health Insurance Corporation (PhilHealth), has confirmed that it was unprotected by antivirus software when it was attacked by...
Read more →
Update now! Atlassian Confluence vulnerability is being actively exploited
Microsoft Threat Intelligence has revealed that it has been tracking the active exploitation of a vulnerability in Atlassian Confluence software...
Read more →
CISA catalog passed 1,000 known to be exploited vulnerabilities. Celebration time, or is it?
The CISA Known Exploited Vulnerabilities catalog has grown to cover more than 1,000 vulnerabilities since its launch in November 2021....
Read more →