Cybersecurity

Venus ransomware targets remote desktop services

Posted: October 20, 2022 by Christopher Boyd It’s time for another tale of remote desktop disaster, as a newish form of ransomware carves out a name for itself. Bleeping Computer reports that individuals behind Venus ransomware are breaking into “publicly exposed Remote Desktop services”, with the intention of encrypting any and all Windows devices. Since at least August 2022, Venus […]

Venus ransomware targets remote desktop services Read More »

Warning: “FaceStealer” iOS and Android apps steal your Facebook login

Posted: October 18, 2022 by Malwarebytes Labs Earlier this month, security researchers from Meta found 400 malicious Android and iOS apps designed to steal user Facebook login credentials. Such mobile malware, which Malwarebytes detects typically as Android/Trojan.Spy.Facestealer, usually arrives as an app disguised as a useful or entertaining tool. But before the app can be fully used, it asks users to login to

Warning: “FaceStealer” iOS and Android apps steal your Facebook login Read More »

Thermal cameras could help reveal your password

Posted: October 18, 2022 by Jovi Umawing Thermal imaging cameras detect heat energy, a helpful tool for engineers when hunting for thermal insulation gaps in buildings. But did you know that such devices can now aid in password theft? Because these devices are sold a lot cheaper than they used to, pretty much anyone can get their hands

Thermal cameras could help reveal your password Read More »

Only half of teens agree they “feel supported online” by parents

Posted: October 13, 2022 by Malwarebytes Labs Not enough children and teenagers trust their parents to support them online, and not enough parents know exactly how to give the support their children need. Those are some of the latest findings from joint research conducted this summer by Malwarebytes and 1Password, which we have published today in the

Only half of teens agree they “feel supported online” by parents Read More »

Android and iOS leak some data outside VPNs

Posted: October 16, 2022 by Christopher Boyd Virtual Private Networks (VPNs) on Android and iOS are in the news. It’s been discovered that in certain circumstances, some of your traffic is leaked so it ends up outside of the safety cordon created by the VPN. Mullvad, the discoverers of this Android “feature” say that it has the potential to cause

Android and iOS leak some data outside VPNs Read More »

Why Passwords are Your Business’s Weakest Point

In today’s digital world, safeguarding your organization’s online assets is critical. Unfortunately, poor password hygiene practices by some employees cause problems for many small businesses, leaving them vulnerable to hackers. Cybercriminals are constantly trying to find new ways to break into business systems. Sadly, too often, they succeed thanks to weak passwords. In fact, nearly

Why Passwords are Your Business’s Weakest Point Read More »

FBI, CISA warn of disinformation ahead of midterms

Foreign actors may intensify efforts to influence outcomes of the 2022 midterm elections Posted: October 15, 2022 by Malwarebytes Labs In less than four weeks, the balance of power in the US House of Representatives and Senate will be up for grabs, along with a host of gubernatorial seats, and positions at the state and municipal levels. With

FBI, CISA warn of disinformation ahead of midterms Read More »

Chinese APT’s favorite vulnerabilities revealed

In a joint cybersecurity advisory, the National Security Agency (NSA) Posted: October 13, 2022 by Malwarebytes Labs In a joint cybersecurity advisory, the National Security Agency (NSA), the Cybersecurity and Infrastructure Security Agency (CISA), and the Federal Bureau of Investigation (FBI) have revealed the top CVEs used by state-sponsored threat actors from China. The advisory aims to “inform federal and

Chinese APT’s favorite vulnerabilities revealed Read More »

Update now! October patch Tuesday fixes actively used zero-day…but not the one you expected

Microsoft fixed 84 vulnerabilities in its October 2022 Patch Tuesday updates Posted: October 12, 2022 by Pieter Arntz . Thirteen of them received the classification ‘Critical’. Among them are a zero-day vulnerability that’s being actively exploited, and another that hasn’t been spotted in the wild yet. The bad news is that the much-desired fix for the “ProxyNotShell” Exchange vulnerabilities was

Update now! October patch Tuesday fixes actively used zero-day…but not the one you expected Read More »