Magniber ransomware targets home users

If you’ve been following any news about ransomware, you may be under the impression that ransomware groups are only after organizations rather than individual people, and for the most part that’s true. However, Magniber is one ransomware that does target home users. And its back, with full force,...

Watch out for tech support scams lurking in sponsored search results

This blog post was written based on research carried out by Jérôme Segura. A campaign using sponsored search results is targeting home users and taking them to tech support scams. Sponsored search results are the ones that are listed at the top of search results and are labelled "Sponsored". They...

State of Malware 2024: What consumers need to know

Released today, the Malwarebytes State of Malware 2024 report takes a deep dive into the latest developments in the world of cybercrime. As home users, many of the threats we cover will only affect you second hand, such as disruptions after a company suffers a ransomware attack, or when your...

CVE-2020-17382

The MSI AmbientLink MsIo64 driver 1.0.0.8 has a Buffer Overflow 0x80102040, 0x80102044, 0x80102050,and 0x80102054. Recent assessments: bwatters-r7 at September 09, 2020 6:09pm UTC reported: This is a vulnerability in the MSI AmbientLink Version 1.0.0.8. The vulnerability allows a regular user...

National Cybersecurity Awareness Month: Cybersecurity at Home

October is National Cybersecurity Awareness Month NCSAM, an annual campaign to raise awareness about cybersecurity. The National Cyber Security Alliance NCSA has published general tips to help you increase your cybersecurity awareness—including whom to contact if you are the victim of cyber...

Description of the security update for Excel 2003: October 10, 2006

Description of the security update for Excel 2003: October 10, 2006 Microsoft has released security bulletin MS06-059. The security bulletin contains all the relevant information about the security update for Microsoft Office Excel 2003. This information includes file manifest information and...

Fixing the Meltdown and Spectre vulnerabilities

Two days ago, Graz University of Technology published a paper describing a pair of attacks on common microprocessors. The underlying vulnerability affects Intel, AMD, and ARM processors. All contemporary microprocessors pre-execute instructions. In other words, the vulnerability bypasses address...

MS09-056: Vulnerabilities in CryptoAPI could allow spoofing

MS09-056: Vulnerabilities in CryptoAPI could allow spoofing Support for Windows Vista Service Pack 1 SP1 ends on July 12, 2011. To continue receiving security updates for Windows, make sure you're running Windows Vista with Service Pack 2 SP2. For more information, refer to this Microsoft web pag...

SambaCry, the Seven Year Old Samba Vulnerability, is the Next Big Threat (for now)

As Samba is used as part of many organizations storage systems, we will discuss the impact of the vulnerability on organizations and home users...

MS11-025: Description of the security update for Visual C++ 2010 Redistributable Package: April 12, 2011

MS11-025: Description of the security update for Visual C++ 2010 Redistributable Package: April 12, 2011 INTRODUCTION Microsoft has released security bulletin MS11-025. To view the complete security bulletin, visit one of the following Microsoft websites: Home users:...

MS14-060: Vulnerability in Windows OLE could allow for remote code execution: October 14, 2014

MS14-060: Vulnerability in Windows OLE could allow for remote code execution: October 14, 2014 INTRODUCTION Microsoft has released security bulletin MS14-060. To learn more about this security bulletin: Home users: https://www.microsoft.com/security/pc-security/updates.aspxSkip the details:...

MS13-081: Description of the security update for kernel-mode drivers: October 8, 2013

MS13-081: Description of the security update for kernel-mode drivers: October 8, 2013 INTRODUCTION Microsoft has released security bulletin MS13-081. To view the complete security bulletin, go to one of the following Microsoft websites: Home users:...

MS12-070: Description of the security update for SQL Server 2012 QFE: October 9, 2012

MS12-070: Description of the security update for SQL Server 2012 QFE: October 9, 2012 View products that this article applies to.Microsoft has released security bulletin MS12-070. To view the complete security bulletin, go to one of the following Microsoft websites: Home users:...

Serious Vulnerabilities Found in Popular Home Wireless Routers

Hackers love to attack Java. Why? Well, not only because it is full of holes, but because it’s everywhere, embedded on endpoints, Web browsers, mobile devices and more. The same goes for attacking wireless routers; they’re buggy and they’re everywhere. A handful of vulnerabilities were identified...

MS13-009: Cumulative Security Update for Internet Explorer: February 12, 2013

Resolves vulnerabilities in Internet Explorer that could allow remote code execution if a user views a specially crafted webpage by using Internet Explorer.The update that this article describes has been replaced by a newer update. To resolve this problem, install the most current cumulative...

Update Protection against Synology Disk Station FTP Login Web Commands Injection Vulnerability

A remote command injection vulnerability has been discovered in Synology Disk Station. The Synology Disk Station is a product designed for storage purposes of small offices or home users. It supports several terabytes of total storage. A remote attacker may exploit this vulnerability to execute...

[email protected]

The following is the updated version of a post sent to FD http://seclists.org/lists/fulldisclosure/2006/Jul/0137.html ... Title: Unauthenticated access to BT Voyager config file and PPP credentials embedded in HTML form Successfully tested against: - BT Voyager 2091 Wireless ADSL - Firmware...

FVS318.txt

Multiple Vulnerabilities in Netgear FVS318 Router http://www.securinews.com/vuln.htm?vulnid=103 ------------------------------------------------- Overview: The Netgear FVS318 is an easy to use, firewall/router designed for home users and small businesses. SecuriNews Research has found 2...