WhatsApp has fixed two remote code execution vulnerabilities in its September update, according to its security advisory. These could have allowed an attacker…
Month: September 2022
Calling in the ransomware negotiator, with Kurtis Minder: Lock and Code S03E20
Ransomware can send any company into crisis. Immediately following an attack, the notoriously disruptive malware can spread across networks and machines,…
Twitter fixes bug that left devices logged in after password reset
Twitter says it has fixed a bug that meant users weren’t logged out of active sessions on all devices after manually…
A week in security (September 19 – 25)
Last week on Malwarebytes Labs: Stay safe!
Update Firefox and Thunderbird now! Mozilla patches several high risk vulnerabilities
Mozilla has released security updates to address vulnerabilities in Firefox, Firefox ESR, and Thunderbird. An attacker could exploit some of these…
2K games helpdesk abused to spread RedLine malware
On September 20, 2022, the official Twitter account for 2K Support tweeted an important message from the Customer Support team. The…
Medtronic’s MiniMed 600 series insulin pumps potentially at risk of compromise, says FDA
The US FDA (Food and Drug Administration) has warned users of Medtronic’s MiniMed 600 Series Insulin Pump System—specifically, models for MiniMed 630G…
Morgan Stanley’s years-long “extensive failure” to protect customer data ends in huge fine
On Tuesday, the Securities and Exchange Commission (SEC) charged financial company Morgan Stanley a $35M fine for “the firm’s extensive failures, over five…
Welcome to high tech hacking in 2022: Annoying users until they say “yes”
Last week we learned that ride-sharing giant Uber’s defences had been unpicked by an attacker with a novel take on social…
Tax refund phish logs keystrokes to swipe personal details
There’s been some smart phishing campaigns running over the last few weeks, and this one is particularly sneaky. Bleeping Computer reports…