#Reports

CISA is trying to reset expectations about how quickly federal deparments and agencies should be patching vulnerabilities. Categories: Reports Tags: cisa DHS operational directive *( Read more... ( https://blog.malwarebytes.com/reports/2021/11/cisa-sets-two-week-window-for-patching-serious-vulnerabilities/ ) )* The post CISA sets two week window for patching serious vulnerabilities appeared first on Malwarebytes Labs.

Mozilla found two malicious add-ons that were blocking 455,000 users from getting updates by abusing the proxy API. Categories: Reports Tags: bypass Bypass XM firefox mozilla proxy API *( Read more... ( https://blog.malwarebytes.com/reports/2021/10/patch-now-to-bypass-firefox-add-ons-that-abuse-the-proxy-api-to-deny-updates/ ) )* The post Patch now to bypass Firefox add-ons that abuse the proxy API to deny updates appeared first on Malwarebytes Labs.

On Lock and Code this week, we discuss staying private online, beyond using a VPN, with Tor Project Executive Director Isabella Bagueros. Categories: Podcast Tags: Data privacy Isabella Bagueros lock and code Onion router online privacy podcast private browser surveillance The Tor Project Tor browser Tor Project virtual private network vpn *( Read more... ( https://blog.malwarebytes.com/podcast/2021/10/beyond-the-vpn-ultimate-online-privacy-with-the-tor-projects-isabella-bagueros-lock-and-code-s02e20/ ) )* The post Beyond the VPN: Ultimate online privacy, with The Tor Project’s Isabela Bagueros: Lock and Code S02E20 appeared first on Malwarebytes Labs.

After 29 years of support-by-default, Microsoft is disabling a macro language that almost nobody uses, apart from malware writers. Categories: Reports Tags: 4.0 backward compatibility excel macro microsoft VBA xlm *( Read more... ( https://blog.malwarebytes.com/reports/2021/10/at-long-last-microsoft-is-disabling-excel-4-0-macros-by-default/ ) )* The post At long last, Microsoft is disabling Excel 4.0 macros by default appeared first on Malwarebytes Labs.

On September 30 part of the internet broke due to a certificate expiration date. One of the contributing problems has now been fixed by GnuPG. Categories: Reports Tags: digital certificates GnuPG Let's Encrypt openpgp ssl certificate *( Read more... ( https://blog.malwarebytes.com/reports/2021/10/gnupg-fixes-a-problem-with-lets-encrypt-certificate-chain-validation/ ) )* The post GnuPG fixes a problem with Let’s Encrypt certificate chain validation appeared first on Malwarebytes Labs.

Neiman Marcus has suffered a big data breach. What should you do if you are one of the affected customers? Categories: Reports Tags: credit monitoring data breach free credit report haveibeenpwned Neiman Marcus *( Read more... ( https://blog.malwarebytes.com/reports/2021/10/neiman-marcus-data-breach-affects-millions/ ) )* The post Neiman Marcus data breach affects millions appeared first on Malwarebytes Labs.

The Internet is neither safe or private for many who use it every day, as revealed in the Malwarebytes "Demographics of Cybercrime" report. Categories: Reports Tags: antivirus BIPOC CSN cybercrime Cybercrime Support Network cybersecurity Demographics of Cybercrime Digitunity online privacy online safety women *( Read more... ( https://blog.malwarebytes.com/reports/2021/09/malwarebytes-research-shows-an-unequal-unsafe-internet/ ) )* The post Malwarebytes research shows an unequal, unsafe Internet appeared first on Malwarebytes Labs.

Someone is trying to use CVE-2021-40444 against valuable Russian targets. Categories: Reports Tags: cve-2021-40444 Makeyev Ministry of the Interior mshtml vulnerability *( Read more... ( https://blog.malwarebytes.com/reports/2021/09/mshtml-attack-targets-russian-state-rocket-centre-and-interior-ministry/ ) )* The post MSHTML attack targets Russian state rocket centre and interior ministry appeared first on Malwarebytes Labs.