Security
Headlines
HeadlinesLatestCVEs

Source

Malwarebytes

Shrootless: Microsoft finds Apple macOS vulnerability

Shrootless is a vulnerability found in macOS that can bypass the System Integrity Protection by abusing inherited permissions. Categories: Exploits and vulnerabilities Mac Tags: cve-2021-30892 macOS post installation script Shrootless SIP system_installid zsh zshenv *( Read more... ( https://blog.malwarebytes.com/exploits-and-vulnerabilities/2021/10/shrootless-microsoft-finds-apple-vulnerability-in-macos/ ) )* The post Shrootless: Microsoft finds Apple macOS vulnerability appeared first on Malwarebytes Labs.

Malwarebytes
Open in Source
#Threat Intelligence#crackme#malware#windows#Exploits and vulnerabilities#api#compromise#key#optinmonster#redirect#wordpress#vulnerability#Malwarebytes news#data#privacy#security#tips#Exploits and vulnerabilities#Mac#cve-2021-30892#macOS#post installation script#Shrootless#SIP#system_installid#zsh#zshenv#vulnerability#mac#apple#microsoft
Threat profile: Ranzy Locker ransomware

What you need to know about Ranzy Locker ransomware. Categories: Ransomware Tags: brute force protection exchange raas Ranzy Locker rdp RIG EK shadow volumecopies yara rule *( Read more... ( https://blog.malwarebytes.com/ransomware/2021/10/threat-profile-ranzy-locker-ransomware/ ) )* The post Threat profile: Ranzy Locker ransomware appeared first on Malwarebytes Labs.

What is fileless malware?

What is fileless malware, and what does a fileless attack look like? Some answers. Categories: Explained Tags: attack surface CactusTorch credentials dropper exfiltrate exploit kits fileless fileless attacks fileless malware initial access registry key siem *( Read more... ( https://blog.malwarebytes.com/explained/2021/10/what-is-fileless-malware/ ) )* The post What is fileless malware? appeared first on Malwarebytes Labs.

Watch out for the Steam skin “free knife” scam

We look at a small batch of Steam scam messages, focused on offering potential victims "free" knife and bayonet skins. Categories: Scams Tags: community fake free knife phish phishing skin steam trading *( Read more... ( https://blog.malwarebytes.com/scams/2021/10/watch-out-for-the-steam-skin-free-knife-scam/ ) )* The post Watch out for the Steam skin “free knife” scam appeared first on Malwarebytes Labs.

Update now! Apple patches bugs in iOS and iPadOS

Apple has issued updates for iOS 14.8.1 iPadOS 14.8.1, iOS 15.1, and iPadOS 15.1. We take a look at some of the patched vulnerabilities. Categories: Exploits and vulnerabilities Tags: 14.8 15.1 Apple *( Read more... ( https://blog.malwarebytes.com/exploits-and-vulnerabilities/2021/10/update-now-apple-patches-bugs-in-ios-and-ipados/ ) )* The post Update now! Apple patches bugs in iOS and iPadOS appeared first on Malwarebytes Labs.

How social media mistakes can impact cybersecurity

Trusting the wrong people often leads to cybersecurity mistakes, and it's one of the biggest things our support team gets asked about. Categories: How-tos Tags: advertisements algorithms cookies facebook floc haveibeenpwned phishing privacy trust *( Read more... ( https://blog.malwarebytes.com/how-tos-2/2021/10/how-social-media-mistakes-can-impact-cybersecurity/ ) )* The post How social media mistakes can impact cybersecurity appeared first on Malwarebytes Labs.

Patch now to bypass Firefox add-ons that abuse the proxy API to deny updates

Mozilla found two malicious add-ons that were blocking 455,000 users from getting updates by abusing the proxy API. Categories: Reports Tags: bypass Bypass XM firefox mozilla proxy API *( Read more... ( https://blog.malwarebytes.com/reports/2021/10/patch-now-to-bypass-firefox-add-ons-that-abuse-the-proxy-api-to-deny-updates/ ) )* The post Patch now to bypass Firefox add-ons that abuse the proxy API to deny updates appeared first on Malwarebytes Labs.

Beyond the VPN: Ultimate online privacy, with The Tor Project’s Isabela Bagueros: Lock and Code S02E20

On Lock and Code this week, we discuss staying private online, beyond using a VPN, with Tor Project Executive Director Isabella Bagueros. Categories: Podcast Tags: Data privacy Isabella Bagueros lock and code Onion router online privacy podcast private browser surveillance The Tor Project Tor browser Tor Project virtual private network vpn *( Read more... ( https://blog.malwarebytes.com/podcast/2021/10/beyond-the-vpn-ultimate-online-privacy-with-the-tor-projects-isabella-bagueros-lock-and-code-s02e20/ ) )* The post Beyond the VPN: Ultimate online privacy, with The Tor Project’s Isabela Bagueros: Lock and Code S02E20 appeared first on Malwarebytes Labs.

Beyond the VPN: Ultimate online privacy, with The Tor Project’s Isabella Bagueros: Lock and Code S02E20

On Lock and Code this week, we discuss staying private online, beyond using a VPN, with Tor Project Executive Director Isabella Bagueros. Categories: Podcast Tags: Data privacy Isabella Bagueros lock and code Onion router online privacy podcast private browser surveillance The Tor Project Tor browser Tor Project virtual private network vpn *( Read more... ( https://blog.malwarebytes.com/podcast/2021/10/beyond-the-vpn-ultimate-online-privacy-with-the-tor-projects-isabella-bagueros-lock-and-code-s02e20/ ) )* The post Beyond the VPN: Ultimate online privacy, with The Tor Project’s Isabella Bagueros: Lock and Code S02E20 appeared first on Malwarebytes Labs.

A week in security (Oct 18 – Oct 24)

A roundup of the previous week's most interesting security news and happenings, alongside our own content and research. Categories: A week in security Tags: Australia BlackMatter chrome cryptoeats gamers gummy browsers killware Magnitude npm q-logger revil rickrolls sinclair Slack snapchat tesla winRAR WP Fastest Cache youtube *( Read more... ( https://blog.malwarebytes.com/a-week-in-security/2021/10/a-week-in-security-oct-18-2021-oct-24-2021/ ) )* The post A week in security (Oct 18 – Oct 24) appeared first on Malwarebytes Labs.