PwnKit: Local Privilege Escalation bug affects major Linux distros
A flaw in Polkit’s pkexec component, tracked as CVE-2021-4034 (PwnKit) can be exploited to gain full root privileges on major...
News
PrinterLogic fixes high severity flaws in Printer Management Suite
PrinterLogic has addressed nine vulnerabilities in Web Stack and Virtual Appliance, including three high severity flaws. PrinterLogic has released security...
Segway e-store compromised in a Magecart attack to steal credit cards
Segway e-store suffered a Magecart attack that potentially allowed threat actors to steal credit cards and customer info. The online...
TianySpy Malware Uses Smishing Disguised as Message From Telco
Trend Micro confirmed a new mobile malware infection chain targeting both Android and iPhone devices. The malware might have been...
UK NCSC is going to release Nmap scripts to find unpatched vulnerabilities
The UK NCSC cybersecurity agency is going to release a collection of NMAP scripts that can allow defenders to find...
Sophisticated attackers used DazzleSpy macOS backdoor in watering hole attacks
Experts found an undocumented macOS backdoor, dubbed DazzleSpy, that was employed in watering hole attacks aimed at politically active individuals...
Discord scammers go CryptoBatz phishing
It’s not been a great couple of weeks for people looking to get in on NFTs. Missing apes, rug-pulls, it’s all go in...
Attackers are actively targeting critical RCE bug in SonicWall Secure Mobile Access
Threat actors are actively exploiting a critical flaw (CVE-2021-20038) in SonicWall’s Secure Mobile Access (SMA) gateways addressed in December. Threat...
Latest version of Android RAT BRATA wipes devices after stealing data
A new version of the BRATA malware implements a functionality to perform a factory reset of the device to wipe...
Segway store compromised with Magecart skimmer
In the early 2000’s, the Segway company released a personal transporter that would become iconic. The Segway Human Transporter was...
A flaw in Rust Programming language could allow to delete files and directories
The maintainers of the Rust programming language fixed a high-severity flaw that could allow attackers to delete files and directories...
Investigating APT36 or Earth Karkaddan’s Attack Chain and Malware Arsenal
We investigated the most recent activities of APT36, also known as Earth Karkaddan, a politically motivated advanced persistent threat (APT)...
Analysis and Impact of LockBit Ransomware’s First Linux and VMware ESXi Variant
LockBit ransomware's operators announced the release of its first Linux and ESXi variant in October. With samples also spotted in...
US-CERT Bulletin (SB22-024):Vulnerability Summary for the Week of January 17, 2022
The CISA Vulnerability Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards...
Tens of AccessPress WordPress themes compromised as part of a supply chain attack
Threat actors planted a backdoor into multiple WordPress themes and plugins after compromising the website of their developer. In a...
Microsoft is now disabling Excel 4.0 macros by default
Back in October 2021, Microsoft announced in an email sent to customers that it planned to disable Excel 4.0 macros...
Warning issued over tampered QR codes
Avid readers of the Malwarebytes Labs blog are quite aware of QR code shenanigans—both within and outside of the United...
Dark Souls servers taken offline over hacking fears
There’s been trouble brewing over the weekend for players of the smash-hit Dark Souls series. PvP servers (player vs player)...
Russian authorities arrested the kingpin of cybercrime Infraud Organization
Russian authorities arrested four alleged members of the international cyber theft ring tracked as ‘Infraud Organization.’ In February 2008, the...
Emotet spam uses unconventional IP address formats to evade detection
Experts warn Emotet malware campaign using “unconventional” IP address formats in an attempt to evade detection. Threat actors behind a...
A week in security (January 17 — 23)
Last week on Malwarebytes Labs: CISA calls for urgent action against critical threatsRed Cross begs attackers to “Do the right...
Crooks tampering with QR Codes to steal victim money and info, FBI warns
The FBI warns that cybercriminals are using malicious QR codes to steal their credentials and financial info. The Federal Bureau of...
F5 fixes 25 flaws in BIG-IP, BIG-IQ, and NGINX products
Cybersecurity provider F5 released security patches to address 25 vulnerabilities affecting its BIG-IP, BIG-IQ, and NGINX products. Cybersecurity firm F5...
OpenSubtitles data breach impacted 7 million subscribers
OpenSubtitles has suffered a data breach, the maintainers confirmed that the incident impacted 7 Million subscribers. OpenSubtitles is a popular...
