Pulse Secure fixes zero-day in Pulse Connect Secure (PCS) SSL VPN actively exploited
Pulse Secure has fixed a zero-day flaw in the Pulse Connect Secure (PCS) SSL VPN appliance that threat actors are...
News
A week in security (April 26 – May 2)
Last week on Malwarebytes Labs, we looked at which age range is most likely to be targeted by online predators,...
Microsoft Finds Critical Code Execution Bugs In IoT, OT Devices
Recently, world-leading giant Microsoft security unit has reported that around 24 critical remote code execution (RCE) vulnerabilities have been found...
US Agencies Hit By Cyberattack, Confirms CISA Investigation
Around five federal civilian agencies were breached recently, in a hit to the US government, revealed an investigation by a...
Cryptocurrency Mining Will Void Your SSD Warranty, Manufacturer Galax Warns
SSD designer Galax has warned users on its Chinese website that mining cryptocurrency with the company’s Solid State Drives (SSDs)...
App Census Study Reveals that Android Devices Leak User Data Stored in Contact Tracing Applications
According to security experts, hundreds of third-party applications on Android devices have access to confidential information collected by Google and...
Python: Affected by Critical IP Address Validation Vulnerability
The critical IP address validation vulnerability in the Python standard library ipaddress is similar to the bug that was discovered...
Spam and phishing in Q1 2021
Quarterly highlights Banking phishing: new version of an old scheme In Q1 2021, new banking scams appeared alongside ones that...
Most Common Causes of Data Breach and How to Prevent It
Which are the most common causes of a Data Breach and how to prevent It? How can organizations prevent it?...
Experian API exposed credit scores of tens of millions of Americans
Experian API exposed credit scores of tens of millions of Americans due to a weakness with a partner website. Anyone...
Threat Report Portugal: Q1 2021
The Threat Report Portugal: Q1 2021 compiles data collected on the malicious campaigns that occurred from January to March, Q1, of 2021....
Chinese APT Actors Attack Russian Defense In An Espionage Attack
An earlier anonymous backdoor malware, called PortDoor, is probably being used by Chinese APT (advanced persistent threat) hackers to attack...
Microsoft Discovered Several Security Flaws in IoT Operating Systems
Security researchers at Microsoft recently uncovered a series of critical memory allocation vulnerabilities in the Internet of Things (IoT). Microsoft...
Babuk Quits Ransomware Encryption, Focuses on Data-Theft Extortion
The Babuk ransomware group has decided to close the affiliate program and switch to an extortion model that does not...
Toxic Eye Malware is Utilizing Telegram
As of 2021, numerous users left WhatsApp for messaging to various other applications that promised improved data protection only after...
First Horizon Bank Online Accounts Hacked to Steal Customers’ Funds
The financial institution, First Horizon Corporation reported that earlier this month some of its customers’ online banking accounts have been...
WeSteal, a shameless commodity cryptocurrency stealer available for sale
The bold author of a new cryptocurrency stealer, dubbed WeSteal, is promising its customers a leading way to make money...
Security Affairs newsletter Round 312
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
Hacking a Tesla Model X with a DJI Mavic 2 drone equipped with a WIFI dongle
A security duo has demonstrated how to hack a Tesla Model X’s and open the doors using a DJI Mavic...
Cloud hosting provider Swiss Cloud suffered a ransomware attack
Swiss cloud hosting provider Swiss Cloud has suffered a ransomware attack that seriously impacted its server infrastructure. On April 27...
AgeLocker ransomware operation targets QNAP NAS devices
Taiwanese vendor QNAP is warning its customers of AgeLocker ransomware attacks on their NAS devices. Crooks behind the AgeLocker ransomware...
Hotbit Shut Down all Services After a Cyberattack
After an alleged cyberattack on Thursday, cryptocurrency trading site Hotbit has shut down all of its services. A note on...
Banca di Credito Cooperativo Bank Suffers a Major Cyber Attack
A suspected cyber-attack by hackers has paralyzed the operations of the 188 branches of the Banca di Credito Cooperativo (Bcc)...
Hackers Attack Apple Prior to Launch Event, Demand Ransom
On the day when Apple was ready to declare a new series of products at its Spring Load Event, there...
