Malwarebytes Labs – The Security Blog From Malwarebytes | Malwarebytes Labs

Threat Intelligence

New MetaStealer malvertising campaigns

December 19, 2023 – In recent malvertising campaigns, threat actors dropped the MetaStealer information stealer, more or less coinciding with a new version release.

Xfinity
Exploits and vulnerabilities

Comcast’s Xfinity breached by Citrix Bleed; 36 million customer’s data accessed

Sound waves
Exploits and vulnerabilities

How Outlook notification sounds can lead to zero-click exploits

Chrome
Exploits and vulnerabilities

Update Chrome now! Emergency update patches zero-day

Rite Aid logo
News

US pharmacy Rite Aid banned from operating facial recognition systems

Threat Intelligence

Threat Intelligence

Stay up to date with the latest research and threat intelligence reports.

READ MORE
business category

BUSINESS BLOG

Business

Discover the tools, insights, and advice you need to protect your organization.

EXPLORE
shutterstock 578312191-470x165

PERSONAL BLOG

Personal

Get the security news and tips to help you and your family stay safe.

EXPLORE
Lock and Code podcast

PODCAST

Podcast

Our bi-weekly podcast of the latest security headlines and in-depth interviews with guests

VIEW EPISODES
Armed law enforcement raid a hacker's headquarters

The top 4 ransomware gang failures of 2023

David Ruiz
December 29, 2023
0 Comments

Ransomware gangs don't always win, and when they don't, it feels pretty great.

A man's arm reaches for cash that is hooked onto a fishing lure, about to be pulled away by another hand.

4 sneaky scams from 2023

David Ruiz
December 28, 2023
0 Comments

Online scams abound every day, but these four scams from 2023 were particularly devious.

lioness hiding

How ransomware operators try to stay under the radar

Pieter Arntz
December 27, 2023
0 Comments

We look at the three most common methods that ransomware groups use to avoid being detected.

phishing specal

How to recognize AI-generated phishing mails

Pieter Arntz
December 26, 2023
0 Comments

Cybercriminals now have AI to write their phishing emails, which might well improve their success rates. Here's what to watch out for.

week in security

A week in security (December 18 – December 24)

Malwarebytes
December 25, 2023
0 Comments

A list of topics we covered in the week of December 18 to December 24 of 2023

Xfinity

Comcast’s Xfinity breached by Citrix Bleed; 36 million customer’s data accessed

Pieter Arntz
December 21, 2023
0 Comments

Xfinity has notified customers that due to exploitation of the Citrix Bleed vulnerability, attackers were able to access personal data of almost 36 million customers.

How does ThreatDown Vulnerability Assessment and Patch Management work?

Bill Cozens
December 21, 2023
0 Comments

Dive into the inner workings of ThreatDown Vulnerability Assessment and Patch Management.

Sound waves

How Outlook notification sounds can lead to zero-click exploits

Pieter Arntz
December 21, 2023
0 Comments

A researcher found two Microsoft vulnerabilities which could be combined to achieve zero-click remote code execution.

Chrome

Update Chrome now! Emergency update patches zero-day

Pieter Arntz
December 21, 2023
0 Comments

Google has issued an emergency update for Chrome that fixes an actively exploited zero-day vulnerability in the WebRTC component.

Contributors icon

Contributors

Threat Center icon

Threat Center

Podcasts icon

Podcast

glossary icon

Glossary

Scams icon

Scams