Lucene search
K
MalwarebytesMost viewed

4707 matches found

Malwarebytes
Malwarebytes
added 2025/04/17 3:59 p.m.15 views

Apple patches security vulnerabilities in iOS and iPadOS. Update now!

Apple has released a security update for iOS and iPadOS to patch two zero-day vulnerabilities which are reported to already have been exploited in an extremely sophisticated attack against specific targeted individuals on iOS. Both vulnerabilities allowed an attacker to bypass the memory...

7.5CVSS7.7AI score0.21922EPSS
Exploits6
Malwarebytes
Malwarebytes
added 2025/04/16 2:53 p.m.15 views

“I sent you an email from your email account,” sextortion scam claims

In a new version of the old “Hello pervert” emails, scammers are relying on classic email spoofing techniques to try and convince victims that they have lost control of their email account and computer systems. Email spoofing basically comes down to sending emails with a false sender address, a...

7.2AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/04/14 7:23 a.m.15 views

A week in security (April 7 – April 13)

Last week on Malwarebytes Labs: The Pall Mall Pact and why it matters Child predators are lurking on dating apps, warns report Your 23andMe genetic data could be bought by China, senator warns WhatsApp for Windows vulnerable to attacks. Update now! Man accused of using keylogger to spy on...

7.5AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/03/25 10:9 p.m.15 views

23andMe bankruptcy: How to delete your data and stay safe from the 2023 breach

The genetic testing company 23andMe filed for bankruptcy on Sunday, announcing that, in searching for financial stability through its sale to a new owner, the business will continue operating as normal, including in how customer data is handled. “The company intends to continue operating its...

7.4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/03/23 5:31 p.m.15 views

What Google Chrome knows about you, with Carey Parker (Lock and Code S06E06)

This week on the Lock and Code podcast … Google Chrome is, by far, the most popular web browser in the world. According to several metrics, Chrome accounts for anywhere between 52% and 66% of the current global market share for web browser use. At that higher estimate, that means that, if the 5.5...

7.1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/03/19 1:25 p.m.15 views

The “free money” trap: How scammers exploit financial anxiety

With financial stress at an all-time high, and many Americans grappling with confusion about social security, Medicaid, and Medicare, people are desperately seeking relief. Scammers know this all too well and have tailored their tactics to exploit these fears, preying on vulnerable individuals wi...

7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/03/10 2:25 p.m.15 views

Fake CAPTCHA websites hijack your clipboard to install information stealers

There are more and more sites that use a clipboard hijacker and instruct victims on how to infect their own machine. I realize that may sound like something trivial to steer clear from, but apparently it’s not because the social engineering behind it is pretty sophisticated. At first, these attac...

6.7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/02/07 4:32 p.m.15 views

20 million OpenAI accounts offered for sale

A cybercriminal acting under the moniker “emirking” offered 20 million OpenAI user login credentials this week, sharing what appeared to be samples of the stolen data itself. Post by emirking A translation of the Russian statement by the poster says: “When I realized that OpenAI might have to...

7.5AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/02/04 4:3 p.m.15 views

Valley News Live exposed more than a million job seeker’s resumes

Making your own bad news is not what Valley News Live had in mind, but negligence comes at a price. Cybernews researchers found an unprotected AWS S3 bucket that belongs to Take Valley News Live, a North Dakota-based television station. Gray Television, the owner of Valley News Live, makes for th...

6.7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/02/03 3:55 p.m.15 views

WhatsApp says Paragon is spying on specific users

WhatsApp has accused the professional spyware company Paragon of spying on a select group of users. WhatsApp, the Meta-owned, end-to-end encrypted messaging platform, said it has reliable information that nearly 100 journalists and other “members of civil society” were targets of a spyware campai...

6.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/01/30 3:56 p.m.15 views

Microsoft advertisers phished via malicious Google ads

Just days after we uncovered a campaign targeting Google Ads accounts, a similar attack has surfaced, this time aimed at Microsoft advertisers. These malicious ads, appearing on Google Search, are designed to steal the login information of users trying to access Microsoft's advertising platform...

7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/01/08 5:35 p.m.15 views

US Cyber Trust Mark logo for smart devices is coming

The White House announced the launch of the US Cyber Trust Mark which aims to help buyers make an informed choice about the purchase of wireless internet-connected devices, such as baby monitors, doorbells, thermostats, and more. The cybersecurity labeling program for wireless consumer Internet o...

7.2AI score
Exploits0
Malwarebytes
Malwarebytes
added 2024/12/10 12:6 p.m.15 views

TikTok ban in US: Company seeks emergency injunction to prevent it

TikTok has requested an emergency injunction to stop or postpone the planned ban on the platform in the US. Back in March, the House of Representatives passed a bill that would effectively ban TikTok from the US unless Chinese owner ByteDance agreed to give up its share of the immensely popular...

6.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2024/12/04 4:9 p.m.15 views

Crypto’s rising value likely to bring new wave of scams

With the value of cryptocurrencies going to the roof, you can expect several attempts to get defrauded if you even show the slightest interest in the topic or not. Since most cybercriminals lack creativity and are notoriously lazy, we expect to see only slight variations of old tricks. So, we...

7.2AI score
Exploits0
Malwarebytes
Malwarebytes
added 2024/11/28 3:36 p.m.15 views

Data broker exposes 600,000 sensitive files including background checks

A researcher has discovered a data broker had stored 644,869 PDF files in a publicly accessible cloud storage container. The 713.1 GB container an Amazon S3 bucket did not have password-protection, and the data was left unencrypted, so anybody who stumbled on them could read the files. The files...

6.7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2024/10/11 5:10 p.m.15 views

Modern TVs have “unprecedented capabilities for surveillance and manipulation,” group reveals

Your television is debuting the latest, most captivating program: You. In a report titled “How TV Watches Us: Commercial Surveillance in the Streaming Era,” the Center for Digital Democracy CDD spotlighted a massive data-driven surveillance apparatus that ensnares the public through modern...

6.4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2024/10/10 12:15 p.m.15 views

Internet Archive suffers data breach and DDoS

A non-profit that benefits millions of people has fallen victim to a data breach and a DDoS attack. Internet Archive, most known for its Wayback Machine, is a digital library that allows users to look at website snapshots from the past. It is often used for academic research and data analysis...

7.3AI score
Exploits0
Malwarebytes
Malwarebytes
added 2024/07/31 4:7 p.m.15 views

Meta to pay $1.4 billion over unauthorized facial recognition image capture

Texas Attorney General Ken Paxton has announced a $1.4 billion settlement with Meta to “stop the company’s practice of capturing and using the personal biometric data of millions of Texans without the authorization required by law.” The prime reason for the initial lawsuit that led to the...

7.1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2024/07/24 5:39 p.m.15 views

TracFone will pay $16 million to settle FCC data breach investigation

Following three separate data breaches between 2021 and 2023 which exposed the proprietary information PI of TracFone Wireless customers, the Federal Communications Commission FCC announced that the Verizon-owned company has agreed to pay a $16 million civil penalty to settle the government...

7.5AI score
Exploits0
Malwarebytes
Malwarebytes
added 2024/07/18 12:36 p.m.15 views

Gen Z breakups tainted by login abuse for spying and stalking, research shows

Breaking up is hard to do, but for younger Americans today, ending a romantic relationship requires more than a heart-to-heart conversation—it could also require protection against follow-on invasions of online privacy and security. According to a new analysis of research released earlier this...

7.4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2024/07/10 1:44 p.m.15 views

Peloton accused of providing customer chat data to train AI

It seems that Peloton may have been providing more training than just for its customers, as its set to face court in California accused of using user chat data to train AI. Peloton Interactive, Inc. is a US-based exercise equipment and media company, known for its stationary bicycles, treadmills,...

6.8AI score
Exploits0
Malwarebytes
Malwarebytes
added 2024/07/01 4:10 p.m.15 views

Personal data stolen from unsuspecting airport visitors and plane passengers in “evil twin” attacks, man charged

The Australian Federal Police AFP have charged a man for setting up fake free WiFi access points in order to steal personal data from people. The crime was discovered when an airline reported a suspicious WiFi network identified by its employees during a domestic flight. When the alleged...

7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2024/07/01 2:40 p.m.15 views

Busted for book club? Why cops want to see what you’re reading, with Sarah Lamdan (Lock and Code S05E14)

This week on the Lock and Code podcast… More than 20 years ago, a law that the United States would eventually use to justify the warrantless collection of Americans phone call records actually started out as a warning sign against an entirely different target: Libraries. Not two months after...

7.1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2024/06/06 12:20 p.m.15 views

Husband stalked ex-wife with seven AirTags, indictment says

Following their divorce, a husband carried out a campaign of stalking and abuse against his ex-wife—referred to only as “S.K.”—by allegedly hiding seven separate Apple AirTags on or near her car, according to documents filed by US prosecutors for the Eastern District of Pennsylvania. The document...

6.2AI score
Exploits0
Malwarebytes
Malwarebytes
added 2024/05/16 11:45 a.m.15 views

Scammers can easily phish your multi-factor authentication codes. Here’s how to avoid it

More and more websites and services are making multi-factor-authentication MFA mandatory, which makes it much harder for cybercriminals to access your accounts. Thats a great thing. But as security evolves, so do cybercriminals who are always looking for new ways to scam us. A type of phishing we...

7.5AI score
Exploits0
Malwarebytes
Malwarebytes
added 2024/05/15 8:30 p.m.15 views

Notorious data leak site BreachForums seized by law enforcement

BreachForums—probably the largest dark web marketplace for stolen data to be leaked and sold—has been seized by law enforcement. Now, both the regular and the TOR domain of BreachForums are plastered with a message telling visitors the site is now under control of the FBI. The FBI said BreachForu...

7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2024/03/29 1:40 p.m.15 views

How to back up your Windows 10/11 PC to OneDrive

They say the only backup you ever regret is the one you didnt make. Starting in Windows 10, the operating system OS now comes with a built-in tool to back up your files, themes, some settings, many of your installed apps, and your Wi-Fi information. First, you’ll need to sign in with your Microso...

7.1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2024/03/14 5:35 p.m.15 views

Webinar recap: 6 critical cyberthreats in 2024 and how to counter them

Our webinar on the 2024 State of Malware report is now available on-demand. Featuring cybersecurity experts Mark Stockley and Jérôme Segura, this webinar unpacks 2024’s most critical cyberthreats, including big game ransomware, malvertising, and emerging challenges to mobile and Mac security. Key...

7.4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2024/02/26 7:39 a.m.15 views

A week in security (February 19 – February 25)

Last week on Malwarebytes Labs: Joomla! patches XSS flaws that could lead to remote code execution Update now! ConnectWise ScreenConnect vulnerability needs your attention Why ransomware gangs love using RMM tools—and how to stop them Signal to shield user phone numbers by default Vibrator virus...

7.1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2024/01/18 4:44 p.m.15 views

Cybersecurity spend to soar in 2024: How companies can maximize their investment

"Spend smarter, not harder" is the mantra for 2024, as Gartner forecasts a 14.3% jump in global security and risk management spending—an uptick which brings a renewed focus on the need for cost-effective cybersecurity investments. Inefficient cybersecurity spending, a known problem, becomes even...

7.4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2024/01/08 7:59 a.m.15 views

A week in security (January 1 – January 7)

Last week on Malwarebytes Labs: Police investigate sexual assault on an avatar How AI hallucinations are making bug hunting harder Explained: SMTP smuggling Facebook introduces another way to track you – Link History 23andMe blames "negligent" breach victims, says it’s their own fault Microsoft...

7.4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/12/21 8:51 p.m.15 views

Webinar recap: Ransomware gangs and Living Off The Land attacks (LOTL)

Discover the intersection of Ransomware-as-a-Service RaaS gangs and Living Off The Land LOTL attacks in our latest webinar, now available on-demand, led by cybersecurity experts Ian Thomas, Mark Stockley, and Bill Cozens. The webinar revealed how RaaS gangs use LOTL tactics, leveraging legitimate...

7.3AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/12/12 11:39 a.m.15 views

The sound of you typing on your keyboard could reveal your password

As if password authentications coffin needed any more nails, researchers in the UK have discovered yet another way to hammer one in. The technique, developed at Durham University, the University of Surrey, and Royal Holloway University of London, builds on previous work to produce a more accurate...

7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/12/11 8:6 a.m.15 views

A week in security (December 4 – December 10)

Last week on Malwarebytes Labs: Meta’s Purple Llama wants to test safety risks in AI models US government is snooping on people via phone push notifications, says senator Android phones can be taken over remotely – update when you can How IT teams can conduct a vulnerability assessment for...

7.4AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/11/30 7:53 p.m.15 views

Will ChatGPT write ransomware? Yes.

This morning I decided to write some ransomware, and I asked ChatGPT to help. Not because I wanted to turn to a life of crime, but because I wanted to see if anything had changed since March, when I last tried the same exact thing. In short: ChatGPT has helped me, worryingly so. But more on that...

6.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/11/28 6:48 p.m.15 views

Ransomware gangs and Living Off the Land (LOTL) attacks: A deep dive

We’ve told you about ransomware-as-a-service RaaS gangs; we’ve told you about living off the Land LOTL attacks. What do you get when you bring the two together? Bad news. Our recent report, Threat Brief: Ransomware Gangs & Living Off the Land Attacks, takes a deep dive into why the intersection o...

7.3AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/11/27 8:7 a.m.15 views

A week in security (November 20 – November 26)

Last week on Malwarebytes Labs: Windows Hello fingerprint authentication can be bypassed on popular laptops Citrix Bleed widely exploitated, warn government agencies Chrome pushes forward with plans to limit ad blockers in the future $19 Stanley cup deal is a Black Friday scam Malwarebytes consum...

7.3AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/10/25 6:35 a.m.15 views

Face search engine PimEyes stops searches of children’s faces

In what may come as a surprise, subscription-based face search engine PimEyes seems to have realized that their service can be used for nefarious purposes. PimEyes’ CEO Giorgi Gobronidze told the New York Times that it has taken technical measures to block such searches as part of a “no harm...

7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/10/19 12:13 p.m.15 views

IT administrators’ passwords are awful too

The key is under the doormat by the front door. The administrator password is "admin". These are easy to remember clues when you are providing entrance to someone you trust. The problem is that they are also enormously easy to guess. It’s where we would expect an unwanted visitor to check first,...

7.3AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/09/27 1:15 p.m.15 views

Xenomorph hunts cryptocurrency logins on Android

Cryptocurrency owners should take heed of warnings related to Xenomorph malware--Bleeping Computer reports that the most recent version of Xenomorph now targets various cryptocurrency wallets using fake browser update messaging as bait. Xenomorph is roughly a year old, first springing to prominen...

7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/09/18 1:0 a.m.15 views

A week in security (September 11 - September 17)

Last week on Malwarebytes Labs: Europol lifts the lid on cybercrime tactics Malwarebytes wins every Q2 MRG Effitas award & scores 100% on new phishing test Watch out, this LastPass email with "Important information about your account" is a phish iPhone 15 launch: Wonderlust scammers rear their...

6.7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/08/08 10:15 a.m.15 views

Server breach could be fatal blow for LetMeSpy

A mobile app designed to let people spy on others will shortly be going out of business after a server breach and mass deletion incident. The app, LetMeSpy, sits silently and invisibly on a phone and collects call logs, location data, and even text messages. This kind of program is commonly...

7.2AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/08/07 1:0 a.m.15 views

A week in security (July 31 - August 6)

Last week on Malwarebytes Labs: The end looms for Meta's behavioural advertising in Europe Microsoft Teams used in phishing campaign to bypass multi-factor authentication Film companies lose battle to unmask Reddit users FAQ: How does Malwarebytes ransomware rollback work? How to protect your...

6.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/08/03 9:0 a.m.15 views

Global ransomware attacks at an all-time high, shows latest 2023 State of Ransomware report

Ransomware attacks have shown no signs of slowing down in 2023. A new report from the Malwarebytes Threat Intelligence team shows 1,900 total ransomware attacks within just four countries--the US, Germany, France, and the UK--in one year. The findings, compiled together in the 2023 State of...

7.3AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/08/03 7:45 a.m.15 views

Phishing campaigns are using AMP URLs to avoid detection

Researchers have found a new phishing tactic which uses Google Accelerated Mobile Pages AMP to make URLs look trustworthy. The tactic is designed to slip past both software and users on the lookout for strange and untrustworthy domain names. AMP is an open-source HTML framework designed to make w...

7.3AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/07/31 6:15 p.m.15 views

Supply chain attacks disrupt emergency services communications

A supply chain attack rendered two ambulance trusts incapable of accessing electronic patient records in the UK. The two services, which operate in a region of 12 million people, were not targeted directly. Instead, the attack was aimed at a third-party technology provider used by both the South...

7.1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/07/25 2:0 a.m.15 views

How to set up computer security for your parents

Last Sunday July 23, 2023 was National Parents Day. And maybe you are wondering how you can repay your parents for turning you into the person you are today. And we have an idea that shouldn't cost you much more than some of your time. Help them to shore up their cybersecurity, if they need it. I...

7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/07/14 4:30 p.m.15 views

Tax preparation firms shared sensitive information with Meta

A group of seven US senators has sent a letter to the heads of the IRS, the Department of Justice, the Federal Trade Commission and the IRS watchdog, revealing that they have found evidence that reveals "a shocking breach of taxpayer privacy by tax prep companies and by Big Tech firms." According...

6.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/07/04 2:0 a.m.15 views

Fake reviewers face big fines

The FTC is cracking down on fake reviews. Under the new proposed rules, organisations involved in the buying, selling, and manipulation of reviews could be very much out of pocket. Every time a consumer sees a fake review, it will carry a fine of "up to $50,000" per viewing. From the FTC release:...

7.1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/06/28 4:0 a.m.15 views

Criminal secure messaging system takedown: 6500+ arrests and €900 million+ seized

In 2020, we reported on how law enforcement managed to compromise a secure communications system set up by and for criminals. Now, Europol has published a progress report showing the enormous impact the infiltration of the encrypted communications tool EncroChat made. EncroChat, a company based i...

6.9AI score
Exploits0
Total number of security vulnerabilities4707