News

Representative of the Russian Foreign Ministry announced the need for universal regulation of the Internet

March 10, 2021

According to the official representative of the Russian Foreign Ministry, Maria Zakharova, the actions of social networks that block political...

Guardian: Truecaller Fixes Location Vulnerabilty In Its New App

March 10, 2021

Caller ID and spam blocking company Truecaller recently launched its "Guardian" application that allows users to share their live locations...

Google reCAPTCHA used by Phishing Attackers

March 10, 2021

Thousands of phishing emails threaten Microsoft users to obtain their Office 365 credentials during an active attack. The attackers add...

Patch Tuesday – March 2021

March 10, 2021

Another Patch Tuesday (2021-Mar) is upon us and with this month comes a whopping 122 CVEs. As usual Windows tops...

What’s New in DivvyCloud by Rapid7: February 2021 Feature Releases

March 10, 2021

February was another busy month. Internally, as we work to improve our processes, we are still committed to maintaining our...

Apple fixes CVE-2021-1844 RCE that affects iOS, macOS, watchOS, and Safari

March 9, 2021

Apple released out-of-band patches to address a remote code execution, tracked as CVE-2021-1844, that affect iOS, macOS, watchOS, and Safari...

SUPERNOVA backdoor that emerged after SolarWinds hack is likely linked to Chinese actors

March 9, 2021

Supernova malware clues link Chinese threat group Spiral to SolarWinds server hacks Supernova malware spotted on compromised SolarWinds Orion installs...

UnityMiner targets unpatched QNAP NAS in cryptocurrency mining campaign

March 9, 2021

Experts warn of ongoing attacks targeting QNAP network-attached storage (NAS) devices to abuse them in cryptocurrency mining. Researchers at 360Netlab are...

16100325080_4d921033f0_k-e1609804361284-1024x614-1

SolarWinds spurs investment in threat hunting, supplier vetting

March 9, 2021

Organizations that boosted security budgets in response to the SolarWinds hack invested the most in threat hunting. (“SolarWinds letters” by sfoskett is licensed...

A week in security (March 1 – 7)

March 9, 2021

Last week on Malwarebytes Labs, our podcast featured Eva Galperin who talked to us about defending online anonymity and speech....

International Women’s Day: Women in tech name their heroes

March 9, 2021

Happy Monday! And if you haven’t yet checked the significance of this day—March 8—before grabbing coffee, today is International Women’s...

Supermicro and Pulse Secure Issue Advisories Regarding ‘TricBoot’ Assaults

March 9, 2021

Supermicro, a U.S.-based information technology firm and VPN provider Pulse Secure have released their advisories regarding the vulnerabilities of their...

Hacked SendGrid Accounts used In Phishing Attacks To Steal Logins

March 9, 2021

A new cyber campaign has come to known as a phishing attack. Outlook Web Access and Office 365 services...

Snort Vulnerability Leads Various Cisco Products Exposed to Vulnerabilities

March 9, 2021

Earlier this week, the company told its customers that several Cisco products have been exposed to DoS (Denial of Service)...

Researcher Laxman Muthiyah Awarded with $50,000 for Detecting a Flaw in Microsoft Account

March 9, 2021

A bug bounty hunter was awarded $50,000 by Microsoft for revealing a security vulnerability leading to account deprivation. The expert...

BEC Scammer Infects own Device, Exposes their Activity

March 9, 2021

In some media depictions, criminal and state-backed hackers are constantly portrayed as cunning and sophisticated, gliding inexorably toward their most...

How to Keep Up With Vulnerability Management Challenges in Ephemeral Cloud Environments

March 9, 2021

This blog is part of an ongoing series sharing key takeaways from Rapid7’s 2020 Cloud Security Executive Summit. Interested in...

Hackers compromised Microsoft Exchange servers at the EU Banking Regulator EBA

March 8, 2021

The European Banking Authority (EBA) disclosed a cyberattack that resulted in the hack of its Microsoft Exchange email system. The...

Microsoft updated MSERT to detect web shells used in attacks against Microsoft Exchange installs

March 8, 2021

Microsoft updated its Microsoft Safety Scanner (MSERT) tool to detect web shells employed in the recent Exchange Server attacks. Early...

The launch of Williams new FW43B car ruined by hackers

March 8, 2021

The presentation of Williams’s new Formula One car was ruined by hackers that forced the team to abandon the launch...

Chinese hackers allegedly hit thousands of organizations using Microsoft Exchange

March 8, 2021

Thousands of organizations may have been victims of cyberattacks on Microsoft Exchange servers conducted by China-linked threat actors since January....

Thousands of U.S. Organizations Attacked in a Chinese Cyber-Espionage Campaign

March 8, 2021

Microsoft Exchange servers have become the latest victim of Chinese-sponsored cyber-attack. Chinese hackers targeted the Microsoft Exchange Servers earlier this...

Brave Browser is About to Launch its Own Search Engine

March 8, 2021

Brave is a free and open-source web browser based on the Chromium web browser that had been established by...

Creator of McAfee Antivirus Software Charged For Conspiracy?

March 8, 2021

Creator of McAfee antivirus software, Businessman John McAfee is charged under a conspiracy to commit fraud and money laundering in...

News

Representative of the Russian Foreign Ministry announced the need for universal regulation of the Internet

Guardian: Truecaller Fixes Location Vulnerabilty In Its New App

Google reCAPTCHA used by Phishing Attackers

Patch Tuesday – March 2021

What’s New in DivvyCloud by Rapid7: February 2021 Feature Releases

Apple fixes CVE-2021-1844 RCE that affects iOS, macOS, watchOS, and Safari

SUPERNOVA backdoor that emerged after SolarWinds hack is likely linked to Chinese actors

UnityMiner targets unpatched QNAP NAS in cryptocurrency mining campaign

SolarWinds spurs investment in threat hunting, supplier vetting

A week in security (March 1 – 7)

International Women’s Day: Women in tech name their heroes

Supermicro and Pulse Secure Issue Advisories Regarding ‘TricBoot’ Assaults

Hacked SendGrid Accounts used In Phishing Attacks To Steal Logins

Snort Vulnerability Leads Various Cisco Products Exposed to Vulnerabilities

Researcher Laxman Muthiyah Awarded with $50,000 for Detecting a Flaw in Microsoft Account

BEC Scammer Infects own Device, Exposes their Activity

How to Keep Up With Vulnerability Management Challenges in Ephemeral Cloud Environments

Hackers compromised Microsoft Exchange servers at the EU Banking Regulator EBA

Microsoft updated MSERT to detect web shells used in attacks against Microsoft Exchange installs

The launch of Williams new FW43B car ruined by hackers

Chinese hackers allegedly hit thousands of organizations using Microsoft Exchange

Thousands of U.S. Organizations Attacked in a Chinese Cyber-Espionage Campaign

Brave Browser is About to Launch its Own Search Engine

Creator of McAfee Antivirus Software Charged For Conspiracy?

CISA: CISA Releases Fact Sheet Detailing Embedded Backdoor Function of Contec CMS8000 Firmware

CISA: CISA Adds Four Known Exploited Vulnerabilities to Catalog

CISA: CISA Adds One Known Exploited Vulnerability to Catalog

CISA: CISA Releases Nine Industrial Control Systems Advisories

CISA: CISA Partners with ASD’s ACSC, CCCS, NCSC-UK, and Other International and US Organizations to Release Guidance on Edge Devices

You may have missed