Zero-day vulnerabilities in Chrome and Android exploited by commercial spyware
The Google Threat Analysis Group (TAG) has revealed that of the nine zero-day vulnerabilities affecting Chrome, Android, Apple and Microsoft...
News
Twitter fined $150M after using 2FA phone numbers for marketing
The Federal Trade Commission (FTC) and the Department of Justice (DOJ) have ordered Twitter to pay a $150M penalty for...
Coffee app in hot water for constant tracking of user location
A mobile app violated Canada’s privacy laws via some pretty significant overreach with its tracking of device owners. The violation...
SSNDOB stolen data marketplace shut down by global law enforcement operation
The United States Department of Justice has announced a major takedown of a criminal marketplace that traded Personally Identifiable Information...
TrustPid is another worrying, imperfect attempt to replace tracking cookies
German ISPs are considering the introduction of TrustPid, a new type of “supercookie” that comprises of a unique identifier which...
Internet Safety Month: Parental controls—what they can and can’t do for you
Parental controls can be useful to limit the risks your children run into online, but you should know up front...
Apple’s passkeys attempt to solve the password problem
The recent Apple Worldwide Developers Conference (WWDC) revealed another teasing of what has been referred to as “the end of...
Apple’s passkeys attempt to solve the password problem
The recent Apple Worldwide Developers Conference (WWDC) revealed another teasing of what has been referred to as “the end of...
A critical flaw in Citrix Application Delivery Management allows resetting admin passwords
Citrix fixed a critical flaw in Citrix Application Delivery Management (ADM), tracked as CVE-2022-27511, that can allow attackers to reset...
Stealthy Symbiote Linux malware is after financial institutions
Symbiote, a new “nearly impossible to detect” Linux malware, targeted financial sectors in Latin America—and the threat actors behind it...
Record breaking HTTPS DDoS attack
Last week, Cloudflare blocked the largest HTTPS DDoS attack on record. The attack amassed some 26 million requests per second...
Panchan Golang P2P botnet targeting Linux servers in cryptomining campaign
Researchers discovered a new Golang-based peer-to-peer (P2P) botnet, dubbed Panchan, targeting Linux servers in the education sector since March 2022....
Firefox stops advertisers tracking you as you browse, calls itself the most “private and secure major browser”
Cookies are in the news as Mozilla rolls out significant privacy changes for Firefox. The idea is to dramatically lessen...
Update now! Microsoft patches Follina, and many other security updates
The June 2022 Patch Tuesday may go down in history as the day that Follina got patched, but there was...
Let’s give a look at the Dark Web Price Index 2022
PrivacyAffairs released the Dark Web Index 2022, the document provides the prices for illegal services/products available in the black marketplaces....
It’s official, today you can say goodbye to Internet Explorer. Or can you?
Today, the Internet Explorer (IE) 11 desktop application goes out of support and will be retired for certain versions of...
Email compromise leads to healthcare data breach at Kaiser Permanente
At least 69,000 people have been impacted by a data breach at Kaiser Permanente, a long-running managed healthcare consortium. The...
A flaw in Zimbra email suite allows stealing login credentials of the users
A high-severity vulnerability in the Zimbra email suite could be exploited by an unauthenticated attacker to steal login credentials of...
Addressing Cyber Risk with a Unified Platform
Hear from guest speaker, Forrester analyst, Allie Mellen, as she shares insights and advice on the factors firms should consider...
Karakurt extortion group: Threat profile
The FBI (Federal Bureau of Investigation), together with CISA (Cybersecurity and Infrastructure Security Agency) and other federal agencies, recently released...
Instagram scam steals your selfies to trick your friends
What would you do if a friend of yours set up a NSFW account, and then used it to follow...
“Multiple adversaries” exploiting Confluence vulnerability, warns Microsoft
Microsoft has warned that “multiple adversaries and nation-state actors” are making use of the recent Atlassian Confluence RCE vulnerability. A...
Introducing Malwarebytes Vulnerability Assessment for OneView: How to check for Common Vulnerabilities and Exposures (CVEs)
Malwarebytes is happy to announce our Vulnerability Assessment module for OneView, our multi-tenant console where you can manage Malwarebytes Nebula...
Don’t panic! “Unpatchable” Mac vulnerability discovered
Researchers at MIT’s Computer Science & Artificial Intelligence Lab (CSAIL) found an attack surface in a hardware-level security mechanism utilized...
