Lucene search
+L
MalwarebytesMost viewed

4709 matches found

malwarebytes
malwarebytes
added 2018/05/24 3:0 p.m.30 views

Happy anniversary to Dreamcast…and its scams

This month marks 20 years since the legendary SEGA Dreamcast console was first announced. Looked on fondly by gamers, it revolutionised many aspects of gaming and brought cheapish online console gaming to the masses. Click to enlarge SEGA has endured many, many calls for it to come back as...

7.2AI score
Exploits0
malwarebytes
malwarebytes
added 2018/02/08 7:23 p.m.30 views

New Deepfakes forum goes mining with Coinhive

You may or may be familiar with the furore over Deepfakes, a relatively new development in pornography involving a tool called FacesApp, which is capable of producing a real porn clip that replaces the original actors' heads with those of celebrities—or indeed, anyone at all. Online fakes have be...

7.1AI score
Exploits0
malwarebytes
malwarebytes
added 2017/11/06 6:0 p.m.30 views

A week in security (October 30 – November 5)

Last week on our blog, we told you what to expect at the upcoming Irisscon security conference in Dublin. We gave you a quick introduction into the why and how of analyzing malware based on their API calls. And we issued a warning about some lesser-known cybercrimes. Plus we explained why emergin...

6.8AI score
Exploits0
malwarebytes
malwarebytes
added 2017/10/23 5:24 p.m.30 views

A week in security (October 16 – October 22)

Last week was an eventful one in security, keeping our research and intel teams on their toes. Multiple security researchers homed in on suspicious and malicious apps on Google Play, affecting thousands of Android users. A new variant of Mac malware Proton was also found in the wild, this time...

7.7AI score
Exploits0
malwarebytes
malwarebytes
added 2017/10/19 6:0 p.m.30 views

How to create an intentional culture of security

In this day and age, companies great and small are vulnerable to potential attacks that they are exposed to every day. From insider threats to simple phishing, one is always left guessing if they know enough to handle them or are well prepared to face the risks. Educating your staff about basic...

6.6AI score
Exploits0
malwarebytes
malwarebytes
added 2026/06/11 11:31 a.m.29 views

VRChat says reported data breach never happened

A data breach notice has been filed with the Maine Attorney General, saying more than 2.4 million users of VRChat have had their data breached. The question is, was it VRChat who filed the breach notice, or did someone pretending to represent the company post it instead? On Reddit, a VRChat...

5.4AI score
Exploits0
malwarebytes
malwarebytes
added 2026/05/27 9:56 a.m.29 views

Company bragged phone mics could listen to conversations. They couldn’t.

A media company and two of its marketing partners have been fined for selling a service which, they said, listened in to people's conversations through their phones. Actually they did nothing of the sort. Most people have worried at some point that their phone has been listening to them through t...

5.7AI score
Exploits0
malwarebytes
malwarebytes
added 2026/03/25 2:40 p.m.29 views

New FCC router ban could leave home networks less secure

On Monday, the Federal Communications Commission FCC updated its list of insecure equipment, outlining its reasons for adding all consumer-grade routers made outside the US. Effectively, this would stop foreign-made routers from being imported unless their manufacturers obtain an exemption, due t...

5.9AI score
Exploits0
malwarebytes
malwarebytes
added 2025/04/21 7:1 a.m.29 views

A week in security (April 12 – April 18)

Last week on Malwarebytes Labs: Text scams grow to steal hundreds of millions of dollars Apple patches security vulnerabilities in iOS and iPadOS. Update now! Hi, robot: Half of all internet traffic now automated "I sent you an email from your email account," sextortion scam claims "Follow me" to...

6.9AI score
Exploits0
malwarebytes
malwarebytes
added 2025/03/12 5:7 p.m.29 views

Update your iPhone now: Apple patches vulnerability used in “extremely sophisticated attacks”

Apple has patched a vulnerability in iPhone and iPad that was under active exploitation by cybercriminals. The update is available for: iPhone XS and later, iPad Pro 13-inch, iPad Pro 12.9-inch 3rd generation and later, iPad Pro 11-inch 1st generation and later, iPad Air 3rd generation and later,...

8.8CVSS6.8AI score0.0424EPSS
Exploits4
malwarebytes
malwarebytes
added 2024/11/20 1:12 p.m.29 views

Update now! Apple confirms vulnerabilities are already being exploited

Apple has released security patches for most of its operating systems, including iOS, Mac, iPadOS, Safari, and visionOS. The updates for iOS and Intel-based Mac systems are especially important, as they tackle vulnerabilities that are being actively exploited by cybercriminals. You should make su...

8.8CVSS7AI score0.22728EPSS
Exploits1
malwarebytes
malwarebytes
added 2024/07/01 7:9 a.m.29 views

A week in security (June 24 – June 30)

Last week on Malwarebytes Labs: TEMU sued for being "dangerous malware" by Arkansas Attorney General Driving licences and other official documents leaked by authentication service used by Uber, TikTok, X, and more "Poseidon" Mac stealer distributed via Google ads Federal Reserve "breached" data m...

7.4AI score
Exploits0
malwarebytes
malwarebytes
added 2024/06/04 9:5 p.m.29 views

US residents targeted by utility scammers on Google

Back in February, we reported on malicious ads related to utility bills electricity, gas that direct victims to call centers where scammers will collect their identity and try to extort money from them. A few months later, we checked and were able to find as many Google ads as before, following...

7.2AI score
Exploits0
malwarebytes
malwarebytes
added 2024/03/28 3:19 p.m.29 views

Facebook spied on Snapchat users to get analytics about the competition

Social media giant Facebook snooped on Snapchat users network traffic, engaged in anticompetitive behavior and exploited user data through deceptive practices. Thats according to a court document filed March 23, 2024. The document mentions Facebook’s so-called In-App Action Panel IAAP program,...

6.9AI score
Exploits0
malwarebytes
malwarebytes
added 2024/03/25 3:56 p.m.29 views

Securing your home network is long, tiresome, and entirely worth it, with Carey Parker: Lock and Code S05E07

This week on the Lock and Code podcast… Few words apply as broadly to the public—yet mean as little—as “home network security.” For many, a “home network” is an amorphous thing. It exists somewhere between a router, a modem, an outlet, and whatever cable it is that plugs into the wall. But the id...

7.6AI score
Exploits0
malwarebytes
malwarebytes
added 2024/03/19 11:36 a.m.29 views

Store manager admits SIM swapping his customers

A 42-year-old manager at an unnamed telecommunications company has admitted SIM swapping customers at his store. SIM swapping, also known as SIM jacking, is the act of illegally taking over a target’s cell phone number and re-routing it to a phone under the attackers control. Once an attacker has...

7.3AI score
Exploits0
malwarebytes
malwarebytes
added 2024/01/25 9:9 p.m.29 views

Malicious ads for restricted messaging applications target Chinese users

An ongoing campaign of malicious ads has been targeting Chinese-speaking users with lures for popular messaging applications such as Telegram or LINE with the intent of dropping malware. Interestingly, software like Telegram is heavily restricted and was previously banned in China. Many Google...

7.4AI score
Exploits0
malwarebytes
malwarebytes
added 2024/01/25 8:38 p.m.29 views

Malwarebytes wins every MRG Effitas award for 2 years in a row

ThreatDown Endpoint Protection EP achieved the highest possible score 100% and received certifications for Level 1, Exploit, Online Banking, and Ransomware in the most recent anti-malware efficacy assessment results for the Q3 2023 evaluation performed by MRG Effitas, a world leader in independen...

6.8AI score
Exploits0
malwarebytes
malwarebytes
added 2023/12/27 9:0 a.m.29 views

How ransomware operators try to stay under the radar

An often heard remark is that when your security solution notices a ransomware attack, it’s already too late. Theres a lot of truth in that, if you consider the encryption process to be the ransomware attack. However, these days encryption is just a part of many ransomware attacks. Some of the...

7.8AI score
Exploits0
malwarebytes
malwarebytes
added 2023/12/21 9:2 p.m.29 views

US pharmacy Rite Aid banned from operating facial recognition systems

Pharmacy chain Rite Aid has been denied the right to run facial recognition systems in its stores for five years, by a Federal Trade Commission FTC ruling. The regulator found so many flaws in the retailers surveillance program that it concluded Rite Aid had failed to implement reasonable...

6.9AI score
Exploits0
malwarebytes
malwarebytes
added 2023/12/19 11:20 p.m.29 views

Mr. Cooper leaks personal data of 14 million loan and mortgage customers

A major mortgage and loan company based in Dallas, working under the name Mr. Cooper Group Inc. has released more information on a recent breach. In a data breach notification, the company didnt say what type of cyberattack caused the compromise of customer data, calling it a rather non-descripti...

7.5AI score
Exploits0
malwarebytes
malwarebytes
added 2023/11/22 12:20 p.m.29 views

Explained: Privacy washing

Question: Who said the sentence below? “Privacy is at the heart of everything we do.” Answer: Sundar Pichai, the CEO of Alphabet and its largest subsidiary Google. And if you look at the recent actions Google has announced, you’d be tempted to take his word for it: An initiative to let Chrome hid...

6.9AI score
Exploits0
malwarebytes
malwarebytes
added 2023/11/09 4:34 p.m.29 views

Judge rules it’s fine for car makers to intercept your text messages

A federal judge has refused to bring back a class action lawsuit that alleged four car manufacturers had violated Washington state’s privacy laws by using vehicles’ on-board infotainment systems to record customers’ text messages and mobile phone call logs. The judge ruled that the practice doesn...

7.3AI score
Exploits0
malwarebytes
malwarebytes
added 2023/11/07 10:59 a.m.29 views

Okta breach happened after employee logged into personal Google account

Okta has revealed details about a recent breach which exposed files belonging to customers. As we explained in our article about 1Password being a victim of this breach, it’s normal for Okta support to ask customers to upload a file known as an HTTP Archive HAR file. Having this file allows the...

7.2AI score
Exploits0
malwarebytes
malwarebytes
added 2023/06/26 1:0 a.m.29 views

A week in security (June 19 - 25)

Last week on Malwarebytes Labs: Microsoft Azure AD flaw can lead to account takeover 5 facts to know about the Royal ransomware gang Malwarebytes only vendor to win every MRG Effitas award in 2022 & 2023 UPS warns customers of phishing attempts after data accessed 6 tips for a cybersecure honeymo...

6.7AI score
Exploits0
malwarebytes
malwarebytes
added 2023/05/02 11:30 p.m.29 views

Is it OK to train an AI on your images, without permission?

Website owners are once again at war with tools designed to scrape content from their sites. An AI scraper called img2dataset is scouring the Internet for pictures that can be used to train image-generating AI tools. These generators are increasingly popular text-to-image services, where you ente...

6.9AI score
Exploits0
malwarebytes
malwarebytes
added 2023/02/21 9:30 a.m.30 views

Multilingual skimmer fingerprints 'secret shoppers' via Cloudflare endpoint API

One important aspect of data theft in criminal markets revolves around the authenticity of the data that is being resold. There are different services that exist to vet such things as credit card numbers so that buyers can purchase with confidence. Criminals are also very aware that anyone and in...

0.1AI score
Exploits0
malwarebytes
malwarebytes
added 2023/01/30 1:0 p.m.29 views

Riot Games refuses to pay ransom to avoid League of Legends leak

After confirming threat actors were able to steal some of its code, Riot Games has also revealed that it received a ransom email from its attacker. The attackers demanding $10 million to stop them leaking source code from League of Legend's and other games. Riot's reply? Today, we received a rans...

0.2AI score
Exploits0
malwarebytes
malwarebytes
added 2022/10/27 4:45 p.m.29 views

Fake Proof-of-Concepts used to lure security professionals

Researchers from the Leiden University published a paper detailing how cybercriminals are using fake Proof-of-Concepts PoCs to install malware on researchers' systems. The researchers found these fake PoCs on a platform where security professionals would usually expect to find them--the public co...

7.5AI score
Exploits0
malwarebytes
malwarebytes
added 2022/10/13 9:30 p.m.29 views

Introducing Malwarebytes Managed Detection and Response (MDR)

With our Managed Detection and Response MDR service now generally available for businesses and MSPs, you may be wondering: What is MDR, how does Malwarebytes MDR work, and do I need it? Underpinned by our award-winning EDR technology, Malwarebytes MDR offers powerful and affordable threat...

0.2AI score
Exploits0
malwarebytes
malwarebytes
added 2022/09/26 1:30 p.m.29 views

Calling in the ransomware negotiator, with Kurtis Minder: Lock and Code S03E20

Ransomware can send any company into crisis. Immediately following an attack, the notoriously disruptive malware can spread across networks and machines, locking up important files and rendering vital data almost useless for all employees. As we learned in a previous episode of Lock and Code, a...

0.6AI score
Exploits0
malwarebytes
malwarebytes
added 2022/08/10 8:0 a.m.29 views

5 cybersecurity tips for students going back to school

The new school season is just around the corner. And while you are getting ready to go back to school, now is a good opportunity to check you are doing all you can to stay as safe as possible online. Make sure you are doing these five things: 1. Use multi-factor authentication MFA MFA has become ...

7.4AI score
Exploits0
malwarebytes
malwarebytes
added 2022/07/25 12:26 p.m.29 views

Lightning Framework, modular Linux malware

Researchers at Intezer have published a technical analysis of Lightning Framework, a previously undocumented and undetected Linux threat. Lightning is a modular framework that is very versatile and something we don’t see very often in the Linux space. The old argument that Linux systems or Macs f...

0.4AI score
Exploits0
malwarebytes
malwarebytes
added 2022/07/19 11:12 a.m.29 views

Roblox breached: Internal documents posted online by unknown attackers

A data compromise situation has impacted Roblox Corporation, the developers of the massive smash-hit video game Roblox. An as-yet unknown attacker has breached an employee account, and is in the process of exposing the data theyve collected. Nobody knows if theyve exhausted their newly-plundered...

1.3AI score
Exploits0
malwarebytes
malwarebytes
added 2022/07/13 4:17 p.m.29 views

Cobalt Strikes again: UAC-0056 continues to target Ukraine in its latest campaign

This blog was authored by Roberto Santos and Hossein Jazi The Malwarebytes Threat Intelligence team recently reviewed a series of cyber attacks against Ukraine that we attribute with high confidence to UAC-0056 AKA UNC2589, TA471. This threat group has repeatedly targeted the government entities ...

7.4AI score
Exploits0
malwarebytes
malwarebytes
added 2022/07/05 2:51 p.m.29 views

TikTok is “unacceptable security risk” and should be removed from app stores, says FCC

Brendan Carr, the commissioner of the FCC Federal Communications Commission, called on the CEOs of Apple and Google to remove TikTok from their app stores. In a letter dated June 24, 2022, Carr told Tim Cook and Sundar Pichai that "TikTok poses an unacceptable national security risk due to its...

6.3AI score
Exploits0
malwarebytes
malwarebytes
added 2022/06/24 11:34 a.m.29 views

Cybersecurity agencies: You don’t have to delete PowerShell to secure it

Microsofts PowerShell is a useful, flexible tool that is as popular with criminals as it is with admins. Cybercrooks like it becasue PowerShell is powerful, available almost everywhere, and doesnt look out of place running on a company network. In most places it isnt practical to block PowerShell...

1.3AI score
Exploits0
malwarebytes
malwarebytes
added 2022/06/14 9:53 a.m.29 views

Don’t panic! “Unpatchable” Mac vulnerability discovered

Researchers at MITs Computer Science & Artificial Intelligence Lab CSAIL found an attack surface in a hardware-level security mechanism utilized in Apple M1 chips. The flaw is unpatchable, but attackers would need to chain it with other vulnerabilities to make use of the attack method. The hardwa...

0.2AI score
Exploits0
malwarebytes
malwarebytes
added 2022/06/01 8:20 p.m.29 views

3 ways DNS filtering can save SMBs from cyberattacks

If you’re an SMB, chances are that you’re already well-aware of the fact that cyber threats can wreak havoc on your business. Everything from rootkits to ransomware threaten not just financial losses, but also significant network downtime and reputational damage as well. Couple this with the fact...

6.6AI score
Exploits0
malwarebytes
malwarebytes
added 2022/04/29 8:1 a.m.29 views

Ukraine government and pro-Ukrainian sites hit by DDoS attacks

The Computer Emergency Response Team in Ukraine CERT-UA has announced that Ukraine government web portals and pro-Ukraine sites are subjected to ongoing DDoS distributed denial of service attacks. They dont currently know who is behind these attacks. The attack involves injecting a malicious...

0.1AI score
Exploits0
malwarebytes
malwarebytes
added 2022/03/14 8:41 p.m.29 views

De-Googling Carey Parker’s (and your) life: Lock and Code S03E06

Three years ago, a journalist for Gizmodo named Kashmir Hill wanted to understand what life was like without "Big Tech." Far from a "digital detox" retreat—the kind of which were popular with exceedingly plugged-in, very online types of mid-20s and early-30s folks—Hills experiment with technology...

0.5AI score
Exploits0
malwarebytes
malwarebytes
added 2021/12/20 5:22 p.m.29 views

Everything you always wanted to know about NFTs (but were too afraid to ask): Lock and Code S02E24

In August, the NFT for a cartoon rock sold for $1.3 million, and ever since then, much of the world has been asking: What the heck is going on? NFTs, or non-fungible tokens, have skyrocketed in popularity this year, with the NFTs for several artworks selling for more than $2 million each; the mos...

0.5AI score
Exploits0
malwarebytes
malwarebytes
added 2021/11/22 5:0 p.m.29 views

How to defend your website against card skimmers

Black Friday and the holiday season are approaching, and shoppers are forecast to spend record amounts again this year. Retail websites big and small can expect a lot of interest from shoppers looking for deals, and a lot of interest from cybercriminals looking to cash in on those shoppers, by...

7.3AI score
Exploits0
malwarebytes
malwarebytes
added 2021/11/18 9:9 p.m.29 views

Phishers target TikTok influencers with verification promises and copyright threats

Influencers on TikTok are feeling the pinch of scams and phishing thanks to targeted campaigns hungry for fresh logins. The phishing campaigns make use of much older tactics seen across multiple platforms down the years. It’s a one-two combo of “Do this quickly, or else something bad will happen”...

7.4AI score
Exploits0
malwarebytes
malwarebytes
added 2021/10/15 10:49 a.m.29 views

What is an .exe file? Is it the same as an executable?

You may often see .exe files but you may not know what they are. Is it the same as an executable file? The short answer is no. So whats the difference? What is an .exe file? Exe in this context is a file extension denoting an executable file for Microsoft Windows. Windows file names have two part...

Exploits0
malwarebytes
malwarebytes
added 2021/09/30 11:11 a.m.29 views

Telegram-powered bots circumvent 2FA

Two-factor authentication is a great way to protect your online accounts, and we always recommend you turn it on. But where users put up walls, you can be sure there are cybercriminals trying to break them down. Yesterday, security intelligence firm, Intel 147, revealed it had noticed an uptick o...

0.3AI score
Exploits0
malwarebytes
malwarebytes
added 2021/09/24 4:46 p.m.29 views

Uber security alert scam spoofs real Uber number—Watch out!

This morning Malwarebytes Labs received a scam masquerading as a security alert from Uber. The alert was pretty convincing and used the kind of language were used to seeing in genuine security emails and SMS messages. It read: Your Uber account was recently logged into from iPhone in London. If...

6.9AI score
Exploits0
malwarebytes
malwarebytes
added 2021/09/20 10:28 a.m.29 views

A week in security (Sept 13 – Sept 19)

Last week on Malwarebytes Labs Why backups aren’t a “silver bullet” against ransomware, with Matt Crape: Lock and Code S02E17 The many tentacles of Magecart Group 8 Apple releases emergency update: Patch, but don’t panic Update now! Google Chrome fixes two in-the-wild zero-days Parts of the Dark...

0.3AI score
Exploits0
malwarebytes
malwarebytes
added 2021/09/17 7:42 a.m.29 views

What is the Dark Web? The Dark Web explained

You may have seen the Dark Web referenced in popular TV shows and have gotten the wrong idea, or if you already knew about it, you may have snorted in derision. The Dark Web is also sometimes called the Deep Web, when in fact the Dark Web is only a part of the Deep Web. Terminology Surface Web is...

7AI score
Exploits0
malwarebytes
malwarebytes
added 2021/09/16 10:28 a.m.29 views

Ransomware scammers target artists with fake Krita revenue deals

The Krita digital painting application is currently being targeted by ransomware authors. Available on Steam and other platforms, it’s a powerful tool with a very cheap purchase price and great reviews. A perfect bit of bait to start reeling in potential victims, in other words. How does the scam...

6.7AI score
Exploits0
Total number of security vulnerabilities4709