A week in security (August 21 – August 27)
Last week on Malwarebytes Labs: Teenage members of Lapsus$ ransomware gang convicted Update now! Google Chrome’s first weekly update has...
Read more →Category: MalwareBytes
2.6 million DuoLingo users have scraped data released
Using an openly available API, cybercrimnals were able to scrape the data of 2.6 million DuoLingo users. An unknown party...
Read more →
Google strengthens its Workplace suite protection
We take a look at how Google is strengthening protections across its Workplace products, and Gmail in particular. Google has...
Read more →
Smart lightbulb and app vulnerability puts your Wi-Fi password at risk
We take a look at reports that a smart lightbulb and app vulnerability could potentially put your Wi-Fi password at...
Read more →
Update now! Google Chrome’s first weekly update has arrived
The first of Chrome’s now weekly security updates fixes five vulnerabilities. Google has published details about the first weekly update...
Read more →
Teenage members of Lapsus$ ransomware gang convicted
A wave of video game developer compromises has come to a court-based conclusion for those responsible, with several convictions the...
Read more →
Malwarebytes acquires Cyrus Security
Cybersecurity isn’t limited to defending against malware anymore; it’s about ensuring your entire digital identity remains unscathed and your private...
Read more →
Adobe ColdFusion vulnerability exploited in the wild
A second Adobe ColdFusion vulnerability that was patched in April has been added to CISA’s known exploited vulnerabilities catalog. The...
Read more →
DarkGate reloaded via malvertising and SEO poisoning campaigns
The new version of the DarkGate malware is currently actively being distributed via malspam, malicious ads and SEO poisoning. In July...
Read more →
Ivanti Sentry critical vulnerability—don’t play dice, patch
There is some uncertainty about whether a vulnerability in Ivanti Sentry is being exploited in the wild, but why take...
Read more →
Update now! WinRAR files can be abused to run malware
A new version of WinRAR is available that patches two vulnerabilities attackers could use for remote code execution. A new...
Read more →
Alert Prioritization and Guided Remediation: The future of EDR
Defeat alert fatigue using specialized threat intelligence. Sleepless nights, missed threats, a deluge of notifications—the common symptoms of the bane of...
Read more →