Security
Headlines
HeadlinesLatestCVEs

Source

Malwarebytes

JSSLoader: the shellcode edition

In this deep dive analysis, we look at the latest version of the JSSLoader malware tied to the FIN7 group. (Read more...) The post JSSLoader: the shellcode edition appeared first on Malwarebytes Labs.

Malwarebytes
#js#intel#ssl
Introducing Malwarebytes Cloud Storage Scanning: How to scan for malware in cloud file storage repositories

Categories: Business We’re excited to announce Malwarebytes Cloud Storage Scanning, a new service which extends Nebula malware scanning options to include files stored on cloud storage repositories that are part of your organization’s digital ecosystem. (Read more...) The post Introducing Malwarebytes Cloud Storage Scanning: How to scan for malware in cloud file storage repositories appeared first on Malwarebytes Labs.

A week in security (August 8 - August 14)

Categories: A week in security Categories: News The most important and interesting computer security stories from the last week. (Read more...) The post A week in security (August 8 - August 14) appeared first on Malwarebytes Labs.

Donut breach: Lessons from pen-tester Mike Miller: Lock and Code S03E17

Categories: Podcast This week on Lock and Code, we speak with pen-tester Mike Miller about how he successfully breached a client's offices with little more than a box of donuts. (Read more...) The post Donut breach: Lessons from pen-tester Mike Miller: Lock and Code S03E17 appeared first on Malwarebytes Labs.

Anti-tracking tool tells you if you're being followed

Categories: News Categories: Privacy At Black Hat, a cybersecurity expert presented an anti-stalking tool they made for a friend. (Read more...) The post Anti-tracking tool tells you if you're being followed appeared first on Malwarebytes Labs.

Viral video drives malvertising on social media platform

Tech support scammers are leveraging social media giant Facebook to lure users into clicking on a viral article. (Read more...) The post Viral video drives malvertising on social media platform appeared first on Malwarebytes Labs.

Researchers found one-click exploits in Discord and Teams

Categories: Exploits and vulnerabilities Categories: News Tags: Discord Tags: Spotify Tags: MicrosoftTeams Tags: Electron Tags: ElectronJS Tags: NodeJS Tags: V8 Chrome Tags: Log4Shell Tags: Log4j A group of security researchers found a series of vulnerabilities in the software underlying popular apps like Discord, Microsoft Teams, and many others (Read more...) The post Researchers found one-click exploits in Discord and Teams appeared first on Malwarebytes Labs.

Thousands of Zimbra mail servers backdoored in large scale attack

Categories: Exploits and vulnerabilities Categories: News Tags: Zimbra Tags: ZVS Tags: cve-2022-27925 Tags: web shell Tags: cve-2022-37042 Tags: authentication Tags: RCE Researchers found that a known RCE vulnerability in Zimbra Collaboration was chained with a new authentication vulnerability to drop backdoor web shells on thousands of servers (Read more...) The post Thousands of Zimbra mail servers backdoored in large scale attack appeared first on Malwarebytes Labs.

Slack flaw exposed users' hashed passwords

Categories: Exploits and vulnerabilities Slack was exposing user passwords for years. The bug has been swatted and the affected users informed. (Read more...) The post Slack flaw exposed users' hashed passwords appeared first on Malwarebytes Labs.

Now it's BlenderBot's turn to make shocking, inappropriate, and untrue remarks

Categories: News BlenderBot, Meta's conversational AI, launched last week. And it inherited the kind of talk many AI chatbots before it became notorious for. (Read more...) The post Now it's BlenderBot's turn to make shocking, inappropriate, and untrue remarks appeared first on Malwarebytes Labs.