On May 18, 2023, Apple published security content for macOS Ventura 13.4, macOS Monterey 12.6.6, and macOS Big Sur 11.7.7 that addressed a…
Month: May 2023
Financial services company OneMain fined $4.25 million for security lapses
A series of security errors and mishaps has cost personal loan provider OneMain $4.25m in penalties, issued by the New York…
CISA issues warning to US businesses: Beware of China’s state-sponsored cyber actor
The US Cybersecurity and Infrastructure Security Agency (CISA) has an urgent message for US businesses: watch out for Volt Typhoon, a…
[updated] Barracuda Networks patches zero-day vulnerability in Email Security Gateway
On May 20, Barracuda Networks issued a patch for a zero day vulnerability in its Email Security Gateway (ESG) appliance. The vulnerability…
A week in security (May 22-28)
Last week on Malwarebytes Labs: Stay safe! Malwarebytes EDR and MDR removes all remnants of ransomware and prevents you from getting…
Zyxel patches two critical vulnerabilities
Zyxell has released a security advisory for multiple buffer overflow vulnerabilities. Exploitation of these vulnerabilities could allow an unauthenticated attacker to…
“Beautiful Cookie Consent Banner” WordPress plugin vulnerability: Update now!
WordPress plugins are under fire once more, and you’re advised to update your version of Beautiful Cookie Consent Banner as soon…
Tracking down a trojan: An inside look at threat hunting in a corporate network
At Malwarebytes, we talk a lot about the importance of threat hunting for SMBs—and not for no good reason, either. Just…
CISA updates ransomware guidance
The Cybersecurity and Infrastructure Security Agency (CISA) has updated its #StopRansomware guide to account for the fact that ransomware actors have…
Rheinmetall attacked by BlackBasta ransomware
On Friday May 19, 2023, the German arms producer Rheinmetall acknowledged a cyber-incident at one of it’s subsidiaries in the private…