MalwareBytes – Page 131 – PossibleThreat Articles

4 over-hyped security vulnerabilities of 2022

December 19, 2022 0 Comments cve-2022-22963, cve-2022-22965, cve-2022-27492, cve-2022-34718, cve-2022-36934, Exploits and vulnerabilities, log4j, news, OpenSSL, spring4shell, wormable, zero day

Categories: Exploits and vulnerabilities

Categories: News

Tags: wormable

Tags: zero-day

Tags: spring4shell

Tags: cve-2022-34718

Tags: log4j

Tags: openssl

Tags: cve-2022-36934

Tags: cve-2022-27492

Tags: cve-2022-22965

Tags: cve-2022-22963

What does it take to make the discussion of vulnerabilities useful? And where did this go wrong in 2022?

(Read more…)

The post 4 over-hyped security vulnerabilities of 2022 appeared first on Malwarebytes Labs.

MalwareBytes Security

A week in security (December 12 – 18)

December 19, 2022 0 Comments Apple, awis, ddos booter service, electronic sales suppression tools, indiana, infraguard, infraguard breach, iPhone, law enforcement takedown, msp, nebula, news, play ransomware, quarantine for cloud storage scanning, Ransomware, roi, soc, TikTok, uber, virtual kidnapping, week in security, weekly blog recap

Categories: News

Tags: week in security

Tags: AWIS

Tags: weekly blog recap

Tags: Indiana

Tags: TikTok

Tags: MSP

Tags: electronic sales suppression tools

Tags: iPhone

Tags: Play ransomware

Tags: ransomware

Tags: Nebula

Tags: Quarantine for Cloud Storage Scanning

Tags: SOC

Tags: ROI

Tags: Uber

Tags: Apple

Tags: virtual kidnapping

Tags: DDoS booter service

Tags: law enforcement takedown

Tags: InfraGuard

Tags: InfraGuard breach

The most interesting security related news from the week of December 12 to 18.

(Read more…)

The post A week in security (December 12 – 18) appeared first on Malwarebytes Labs.

MalwareBytes Security

InfraGard infiltrated by cybercriminal

December 16, 2022 0 Comments breach, critical infrastructure, data breach, escrow service, FBI, infragard, news, usdod

Categories: News

Tags: InfraGard

Tags: FBI

Tags: critical infrastructure

Tags: data breach

Tags: USDoD

Tags: Breach

Tags: escrow service

A partnership between the FBI and private sector members established to protect US critical infrastructure, called InfraGard, was infiltrated by a cybercriminal.

(Read more…)

The post InfraGard infiltrated by cybercriminal appeared first on Malwarebytes Labs.

MalwareBytes Security

Virtual kidnapping scam strikes again. Spot the signs

December 16, 2022 0 Comments cashapp, digital payment, fake, fraud, kidnap, Mobile, news, phone call, ransom, relative, Scam, Social engineering, Venmo, victim, virtual kidnapping, wire transfer

Categories: News

Tags: virtual kidnapping

Tags: kidnap

Tags: scam

Tags: fake

Tags: fraud

Tags: ransom

Tags: victim

Tags: wire transfer

Tags: digital payment

Tags: venmo

Tags: cashapp

Tags: social engineering

Tags: phone call

Tags: mobile

Tags: relative

A recent scam has been making the rounds that attempts to fool you into thinking a loved one has been kidnapped.

MalwareBytes Security

Worldwide law enforcement action takes down major DDoS booter services

December 16, 2022 0 Comments news

Categories: News

Global law enforcement agencies came together to take down popular DDoS services.

MalwareBytes Security

Update now! Apple patches active exploit vulnerability for iPhones

December 16, 2022 0 Comments Apple, cve-2022-42856, Exploits and vulnerabilities, ios 16.1.2, news, safari 16.2, type confusion

Categories: Exploits and vulnerabilities

Categories: News

Tags: Apple

Tags: iOS 16.1.2

Tags: Safari 16.2

Tags: CVE-2022-42856

Tags: type confusion

Apple has released new security content for iOS 16.1.2 and Safari 16.2. to fix a zero-day security vulnerability that was actively exploited

MalwareBytes Security

Is Apple about to embrace third-party app stores?

December 15, 2022 0 Comments App Store, Apple, Big Tech, digital markets act, dma, EU, european commission, iPad, iPhone, news

Categories: Apple

Categories: News

Tags: Apple

Tags: DMA

Tags: Digital Markets Act

Tags: European Commission

Tags: EU

Tags: iPhone

Tags: iPad

Tags: Big Tech

Tags: App Store

More freedom and greater risks could be on the cards for European users.

(Read more…)

The post Is Apple about to embrace third-party app stores? appeared first on Malwarebytes Labs.

MalwareBytes Security

Uber data stolen via third-party vendor

December 15, 2022 0 Comments breachforums, data breach, grip security, lapsus, lior yaari, mdm, mobile device management, news, teqtivity, uber, uber eats

Categories: News

Tags: Uber

Tags: data breach

Tags: Teqtivity

Tags: BreachForums

Tags: Uber Eats

Tags: mobile device management

Tags: MDM

Tags: Lapsus$

Tags: Lior Yaari

Tags: Grip Security

Uber is dealing with another cybersecurity incident after an attack on Teqtivity.

(Read more…)

The post Uber data stolen via third-party vendor appeared first on Malwarebytes Labs.

MalwareBytes Security

Is an outsourced SOC worth it? Looking at the ROI of MDR

December 15, 2022 0 Comments Business

Categories: Business

How much can you really save leveraging an outsourced SOC versus building your own in-house? How much ROI can MDR provide over the long-term? In this post, we’ll answer each of these questions and more.

MalwareBytes Security

Update now! Two zero-days fixed in 2022’s last patch Tuesday

December 14, 2022 0 Comments Android, Apple, Cisco, citrix, cve-2022-41076, cve-2022-44670, cve-2022-44676, cve-2022-44698, cve-2022-44710, Exploits and vulnerabilities, fortinet, Google, Microsoft, motw, Mozilla, news, Patch Tuesday, race condition, remote powershell, sap

Categories: Exploits and vulnerabilities

Categories: News

Tags: patch Tuesday

Tags: Microsoft

Tags: Android

Tags: Apple

Tags: Mozilla

Tags: Google

Tags: Sap

Tags: Citrix

Tags: Fortinet

Tags: Cisco

Tags: CVE-2022-44698

Tags: MotW

Tags: CVE-2022-44710

Tags: race condition

Tags: CVE-2022-44670

Tags: CVE-2022-44676

Tags: CVE-2022-41076

Tags: remote powershell

The last patch Tuesday of 2022 is here—find out what Microsoft and many others have fixed