Security
Headlines
HeadlinesLatestCVEs

Source

Malwarebytes

How Outlook notification sounds can lead to zero-click exploits

A researcher found two Microsoft vulnerabilities which could be combined to achieve zero-click remote code execution.

Malwarebytes
#vulnerability#web#mac#windows#microsoft#rce#samba
Update Chrome now! Emergency update patches zero-day

Google has issued an emergency update for Chrome that fixes an actively exploited zero-day vulnerability in the WebRTC component.

US pharmacy Rite Aid banned from operating facial recognition systems

Pharmacy chain Rite Aid has been denied the right to run facial recognition systems in its stores for five years, by the FTC.

Webinar recap: Ransomware gangs and Living Off The Land attacks (LOTL)

Learn how RaaS gangs use LOTL tactics in their attacks on organizations.

FBI issues advisory over Play ransomware

The FBI, CSA, and ACSC have released a joint cybersecurity advisory about the Play ransomware group and their MO.

New MetaStealer malvertising campaigns

In recent malvertising campaigns, threat actors dropped the MetaStealer information stealer, more or less coinciding with a new version release.

Mr. Cooper leaks personal data of 14 million loan and mortgage customers

Loan and mortgage giant Mr. Cooper reported a data breach in which the personal data of 14.7 million homeowners were stolen.

Meet the entirely legal, iPhone-crashing device, the Flipper Zero: Lock and Code S04E25

This week on the Lock and Code podcast, we speak with EFF public interest technology Cooper Quintin about the hacking tool, the Flipper Zero.

MongoDB warns customers about data breach after cyberattack

MongoDB has warned customers about a data breach that leaked information about their customers. The incident is under investigation.

A week in security (December 11 – December 17)

A list of topics we covered in the week of December 11 to December 17 of 2023