Millions of the Pentagon’s Dormant IP Addresses Sprang to Life, Just Minutes Before Trump Left Office
While the world was focused on President Donald Trump's departure on Jan. 20, an obscure Florida corporation quietly revealed a...
News
More than one hundred Russian companies were subjected to a cyber attack
Kaspersky Lab, which specializes in developing systems to protect against cyber threats, reported a fraudulent mailing on behalf of The...
250 Million Americans Sensitive Data Leaked Online by Pompompurin
As of 22nd April 2021, a Pompompurin named hacker group dropped a database of more than 250 (250,806,711) million American...
Apple’s AirDrop Comes with a Security Flaw
Due to its intriguing features, the much-hyped announcement of AirDrop at the Apple event drew a lot of attention. However,...
APT trends report Q1 2021
For four years, the Global Research and Analysis Team (GReAT) at Kaspersky has been publishing quarterly summaries of advanced persistent...
CISA, NIST published an advisory on supply chain attacks
CISA and NIST published a report on software supply chain attacks that shed light on the associated risks and provide...
Ransomware hit Guilderland Central School District near Albany
Officials revealed that the school district near Albany was hit by a ransomware attack that forced students in grades 7...
Microsoft Defender uses Intel TDT technology against crypto-mining malware
Microsoft announced an improvement of its Defender antivirus that will leverage Intel’s Threat Detection Technology (TDT) to detect processes associated...
Shlayer macOS malware abuses zero-day to bypass Gatekeeper feature
Apple addresses a zero-day in macOS exploited by Shlayer malware to bypass Apple’s security features and deliver second-stage malicious payloads. Apple...
Boffins found a bug in Apple AirDrop that could leak users’ personal info
Experts found a bug in Apple’s wireless file-sharing protocol Apple AirDrop that could expose user’s contact information. Boffins from the...
Apple patches ‘worst macOS bug in recent memory’ after it was used in the wild
A newly discovered bug, patched in macOS 11.3, allowed hackers to circumvent much of Apple’s built-in malware detection for programs...
Password manager hijacked to deliver malware in supply chain attack
In the latest example of a supply chain attack, cybercriminals delivered malware to customers of the business password manager Passwordstate...
Zoom deepfaker fools politicians…twice
We recently said deepfakes “remain the weapon of choice for malign interference campaigns, troll farms, revenge porn, and occasionally humorous...
Breaking free from the VirusTotal silo: Lock and Code S02E07
This week on Lock and Code, we speak to Malwarebytes Chief Information Security Officer John Donovan about the flaws in...
11-13 year old girls most likely to be targeted by online predators
The Internet Watch Foundation (IWF), a not-for-profit organization in England whose mission is “to eliminate child sexual abuse imagery online”,...
Threat Actors are Using YouTube to Lure Users into their Trap
Fortinet security researcher ‘accidentally discovered a unique way of tricking YouTube users. Due to Covid-19, as well as the recent...
A Ransomware Group Made $260,000 in 5 Days
A ransomware group made $260,000 by remotely encrypting files on QNAP computers using the 7zip archive software in an interval...
BigBasket: Data Breach Leaks 20 Million User Data
A threat actor dropped about 20 million Big Basket user reports containing personally identifiable details and hashed passwords on a...
Bye Bye Emotet, law enforcement pushed the uninstall code via the botnet
European law enforcement has conducted an operation aimed at performing a mass-sanitization of computers infected with the infamous Emotet Windows...
Prometei botnet is targeting ProxyLogon Microsoft Exchange flaws
Attackers are exploiting the ProxyLogon flaws in Microsoft Exchange to recruit machines in a cryptocurrency botnet tracked as Prometei. Experts...
A supply chain attack compromised the update mechanism of Passwordstate Password Manager
The software company Click Studios was the victim of a supply chain attack, hackers compromised its Passwordstate password management application. Another...
A week in security (April 19 – 25)
Last week on Malwarebytes Labs, we interviewed Youssef Sammouda, a 21-year-old bug bounty hunter who is focused on finding vulnerabilities...
Flubot can Spy on Phones and can Gather Online Banking Details
Experts cautioned that a text message scam infecting Android phones is expanding across the UK. The message, which appears to...
Here’s a Quick Look at the Role of ‘Covalent BlockChain Data API’ in Terms of Data Gathering
In this article, we’re going to deep dive into the role of Covalent, the unified blockchain API. So, the first...
