Security
Headlines
HeadlinesLatestCVEs

Source

Malwarebytes

Steam account credentials phished in browser-in-a-browser attack

Categories: News Tags: phish Tags: phishing Tags: steam Tags: browser Tags: e-sports We take a look at a new use of the browser-in-a-browser attack to steal Steam user credentials. (Read more...) The post Steam account credentials phished in browser-in-a-browser attack appeared first on Malwarebytes Labs.

Malwarebytes
#web#java#auth
Important update! iPhones, Macs, and more vulnerable to zero-day bug

Categories: Exploits and vulnerabilities Categories: News Apple has patched an actively-exploited flaw that affects a host of devices and software, including iPhones, Macs, iPads, and iPod touch. (Read more...) The post Important update! iPhones, Macs, and more vulnerable to zero-day bug appeared first on Malwarebytes Labs.

Update now! Google patches vulnerabilities for Pixel mobile phones

Categories: Exploits and vulnerabilities Categories: News Tags: Google Tags: Pixel Tags: critical Tags: CVE-2022-20364 Tags: CVE-2022-20231 Tags: Trusty Tags: Kernel Google’s Pixel Update Bulletin for September included two security patches that are Pixel specific. (Read more...) The post Update now! Google patches vulnerabilities for Pixel mobile phones appeared first on Malwarebytes Labs.

BackupBuddy WordPress plugin vulnerable to exploitation, update now!

Categories: News Tags: BackupBuddy Tags: WordPress Tags: vulnerability Tags: exploit Tags: hack Tags: compromise Tags: update We take a look at a vulnerability in popular WordPress plugin BackupBuddy, and the steps you need to take to fix it. (Read more...) The post BackupBuddy WordPress plugin vulnerable to exploitation, update now! appeared first on Malwarebytes Labs.

Apple puts the password on life support with passkey

Categories: Apple Categories: News With the introduction of passkeys in iOS 16 and macOS Ventura, Apple is poised to sway a trend against the use of passwords. (Read more...) The post Apple puts the password on life support with passkey appeared first on Malwarebytes Labs.

The MSP playbook on deciphering tech promises and shaping security culture

This week on Lock and Code, we talk about how MSPs can choose the best tech tools for themselves and their clients, all while shaping security culture along the way. (Read more...) The post The MSP playbook on deciphering tech promises and shaping security culture appeared first on Malwarebytes Labs.

6 patch management best practices for businesses

Categories: Business Patching is a thorn in the side of many businesses today: Everything from keeping up with the volume of patches to prioritizing what needs to be patched first can cause major delays in a business's patching process. In this post, we’ll give you six patch management best practices for businesses. (Read more...) The post 6 patch management best practices for businesses appeared first on Malwarebytes Labs.

Facebook engineers aren't sure where all user data is kept

Categories: News In a recently unsealed transcript of the hearing regarding the Cambridge Analytica scandal in 2018, it was revealed that Facebook engineers didn't know where user data was stored. (Read more...) The post Facebook engineers aren't sure where all user data is kept appeared first on Malwarebytes Labs.

The North Face hit by credential stuffing attack

Categories: News Tags: The North Face Tags: credential stuffing Tags: account Tags: compromise Tags: password reuse A data stuffing attack has left close to 200k customers of The North Face with a serious credentials problem. (Read more...) The post The North Face hit by credential stuffing attack appeared first on Malwarebytes Labs.

A week in security (September 5 – 11)

Categories: News The most important and interesting computer security stories from the last week. (Read more...) The post A week in security (September 5 – 11) appeared first on Malwarebytes Labs.