Security
Headlines
HeadlinesLatestCVEs

Source

Malwarebytes

Trojan Source: Hiding malicious code in plain sight

Researchers have revealed a cunning new class of attacks that allow threat actors to use to camouflage malicious code using homoglyphs and bidi control characters. Categories: Exploits and vulnerabilities Tags: CVE-2021-42574 CVE-2021-42694 Trojan Source University of Cambridge *( Read more... ( https://blog.malwarebytes.com/exploits-and-vulnerabilities/2021/11/trojan-source-hiding-malicious-code-in-plain-sight/ ) )* The post Trojan Source: Hiding malicious code in plain sight appeared first on Malwarebytes Labs.

Malwarebytes
Open in Source
#Exploits and vulnerabilities#cloud clipboard#cve-2021-38504#cve-2021-38505#cve-2021-38506#cve-2021-38507#firefox#memory safety bugs#mozilla#QR code#xslt#vulnerability#Exploits and vulnerabilities#CVE-2021-42574#CVE-2021-42694#Trojan Source#University of Cambridge#vulnerability
BlackMatter ransomware group announces shutdown. But for how long?

The BlackMatter ransomware gang has announced they are going to shut down their operation, citing pressure from local authorities.. Will they come back? Probably! Categories: Ransomware Tags: BlackMatter cisa darkside raas ransomware revil *( Read more... ( https://blog.malwarebytes.com/ransomware/2021/11/blackmatter-ransomware-group-announces-shutdown-but-for-how-long/ ) )* The post BlackMatter ransomware group announces shutdown. But for how long? appeared first on Malwarebytes Labs.

This Steam phish baits you with free Discord Nitro

There's another scam making rounds on Discord. And it's cleverly phishing for Steam credentials. Categories: Malwarebytes news Tags: "i accidentally reported you" scam discord free Discord Nitro scam phishing scam steam phishing Steam phishing scam steam scam *( Read more... ( https://blog.malwarebytes.com/malwarebytes-news/2021/11/this-steam-phish-baits-you-with-free-discord-nitro/ ) )* The post This Steam phish baits you with free Discord Nitro appeared first on Malwarebytes Labs.

Zuckerberg’s Metaverse, and the possible privacy and security concerns

We deep-dive into the possible privacy and security issues which may arise from the future launch of Facebook's Meta project. Categories: Privacy Tags: advergaming advertising adverts augmented reality facebook meta oculus virtual reality vr *( Read more... ( https://blog.malwarebytes.com/privacy-2/2021/11/zuckerbergs-metaverse-and-the-possible-privacy-and-security-concerns/ ) )* The post Zuckerberg’s Metaverse, and the possible privacy and security concerns appeared first on Malwarebytes Labs.

Google patches zero-day vulnerability, and others, in Android

Google has patched 39 vulnerabilities, some of which are rated as critical and one that may be under limited, targeted exploitation. Categories: Exploits and vulnerabilities Tags: Android TV CVE-2-21-0930 CVE-2021-0889 CVE-2021-0918 CVE-2021-0930 CVE-2021-1048 CVE-2021-1924 CVSS eop heap overflow MediaTek patch levels qualcomm rce UAF *( Read more... ( https://blog.malwarebytes.com/exploits-and-vulnerabilities/2021/11/google-patches-zero-day-vulnerability-and-others-in-android/ ) )* The post Google patches zero-day vulnerability, and others, in Android appeared first on Malwarebytes Labs.

What is Twitch?

What is Twitch? We take a look at the incredibly popular streaming platform, along with some of the more common scams targeting its users. Categories: 101 Tags: gaming malware phishing prime prime gaming safety scams spam streaming twitch twitch prime video games *( Read more... ( https://blog.malwarebytes.com/101/2021/11/what-is-twitch/ ) )* The post What is Twitch? appeared first on Malwarebytes Labs.

Is Apple’s Safari browser the last, best hope for web privacy?

Apple's "also ran" browser might be the most important bulwark we have against a Google Chrome hegemony. Categories: Privacy Tags: Apple privacy safari *( Read more... ( https://blog.malwarebytes.com/cybercrime/privacy/2021/11/is-apples-safari-browser-the-last-best-hope-for-web-privacy/ ) )* The post Is Apple’s Safari browser the last, best hope for web privacy? appeared first on Malwarebytes Labs.

Lessons from a real-life ransomware attack

Recovering from a ransomware attack shouldn't be a mysterious process. A sysadmin reveals all the best guidance to get through it. Categories: Ransomware Tags: backups emotet lock and code lock and code podcast Northshore School District podcast ransomware ransomware recovery Ransomware Task Force ryuk Ryuk ransomware trickbot *( Read more... ( https://blog.malwarebytes.com/ransomware/2021/11/lessons-from-a-real-life-ransomware-attack/ ) )* The post Lessons from a real-life ransomware attack appeared first on Malwarebytes Labs.

Celebrity jewelry house Graff falls victim to ransomware

High end jewelry store Graff has suffered a ransomware attack where private data of celebrities were exfiltrated. Categories: Ransomware Tags: conti Graff Oprah ransomware *( Read more... ( https://blog.malwarebytes.com/ransomware/2021/11/celebrity-jewelry-house-graff-falls-victim-to-ransomware/ ) )* The post Celebrity jewelry house Graff falls victim to ransomware appeared first on Malwarebytes Labs.

A week in security (Oct 25 – Oct 31)

A roundup of the previous week's blog posts, and the most important and interesting security events and happenings. Categories: A week in security Tags: awis hackers malware phishing roundup week in security *( Read more... ( https://blog.malwarebytes.com/a-week-in-security/2021/11/a-week-in-security-oct-25-oct-31-2021/ ) )* The post A week in security (Oct 25 – Oct 31) appeared first on Malwarebytes Labs.