Mozilla has published updates for two critical security issues in Firefox and Thunderbird, demonstrated during Pwn2Own Vancouver. The vulnerabilities, discovered in…
Tag: vulnerability
Why software has so many vulnerabilities, with Tanya Janca: Lock and Code S03E09
Less than one year ago, the worst ransomware attack in history struck dozens of organizations. Threat actors had exploited a serious…
Update now! Google releases emergency patch for Chrome zero-day used in the wild
Google has urgedits 3 billion+ users to update to Chrome version 99.0.4844.84 for Mac, Windows, and Linux to mitigate a zero-day that…
MSHTML attack targets Russian state rocket centre and interior ministry
Malwarebytes has reason to believe that the MSHTML vulnerability listed under CVE-2021-40444 is being used to target Russian entities. The Malwarebytes…
A week in security (Sept 13 – Sept 19)
Last week on Malwarebytes Labs Other cybersecurity news Stay safe!
Realtek-based routers, smart devices are being gobbled up by a voracious botnet
A few weeks ago we blogged about a vulnerability in home routers that was weaponized by the Mirai botnet just two…
Katie Moussouris hacked Clubhouse. Her emails went unanswered for weeks: Lock and Code S02E15
Nearly one year after the exclusive app Clubhouse launched on the iOS store, its popularity skyrocketed. The app, which is now…
The story of ZeroLogon
This is the story of a vulnerability that was brought about by the incorrect use of an encryption technique. After it…
XSS to TSS: tech support scam campaign abuses cross-site scripting vulnerability
Tech support browser lockers continue to be one of the most common web threats. Not only are they a problem for…
iOS Mail bug allows remote zero-click attacks
On Monday, ZecOps released a report about a couple concerning vulnerabilities with the Mail app in iOS. These vulnerabilities would allow…