A week in security (Dec 6 – 12)

December 13, 2021

Last week on Malwarebytes Labs:

  • Log4j zero-day “Log4Shell” arrives just in time to ruin your weekend
  • Click “OK” to defeat MFA
  • Fake job interviews plague major game developers like Riot Games and Rockstar
  • Has your WordPress site been backdoored by a skimmer?
  • What is a search engine and why does anyone care which one you use?
  • Vulnerability in Windows 10 URI handler leads to remote code execution
  • Was threat actor KAX17 de-anonymizing the Tor network?
  • Is your web browser vulnerable to data theft? XS-Leak explained
  • Microsoft disrupts China-based hacking group Nickel
  • How to check for Windows updates and install them
  • Why Macs are the best, according to Mac expert Thomas Reed: Lock and Code S02E23
  • NSO Group spyware found on iPhones of US State Department employees

Stay safe!

The post A week in security (Dec 6 – 12) appeared first on Malwarebytes Labs.

If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.

Discord

Original Source
Tags: , ,

You may have missed

CISA Logo

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

April 20, 2024
CISA Logo

CISA: Joint Guidance on Deploying AI Systems Securely

April 20, 2024
CISA Logo

CISA: Juniper Releases Security Bulletin for Multiple Juniper Products

April 20, 2024
CISA Logo

CISA: Citrix Releases Security Updates for XenServer and Citrix Hypervisor

April 20, 2024
CISA Logo

CISA: Palo Alto Networks Releases Guidance for Vulnerability in PAN-OS, CVE-2024-3400

April 20, 2024