www.secnews.physaphae.fr This is the RSS 2.0 feed from www.secnews.physaphae.fr. IT's a simple agragated flow of multiple articles soruces. Liste of sources, can be found on www.secnews.physaphae.fr. 2024-03-28T20:48:56+00:00 www.secnews.physaphae.fr Malwarebytes Labs - MalwarebytesLabs LinkedIn introduces new security features to combat fake accounts Categories: NewsTags: fake accounts Tags: social media platform Tags: LinkedIn Tags: AI Tags: deep learning Tags: reporting After a deluge of fake or bot accounts these past few months, LinkedIn says it is starting to roll out some new security features. (Read more...) ]]> 2022-11-01T14:15:00+00:00 https://www.malwarebytes.com/blog/news/2022/11/linkedin-introduces-new-security-features-to-combat-fake-accounts www.secnews.physaphae.fr/article.php?IdArticle=7771433 False None None None Malwarebytes Labs - MalwarebytesLabs Malware on the Google Play store leads to harmful phishing sites Categories: AndroidCategories: NewsA family of malicious apps from developer Mobile apps Group are on Google Play infected with HiddenAds. (Read more...) ]]> 2022-11-01T14:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/11/malware-on-the-google-play-store-leads-to-harmful-phishing-sites www.secnews.physaphae.fr/article.php?IdArticle=7771434 False Guideline None None Malwarebytes Labs - MalwarebytesLabs Police warn of fake law enforcement arrest warrant calls Categories: NewsTags: fake Tags: fraud Tags: police Tags: cops Tags: call Tags: warrant Tags: arrest Tags: payment We take a look at fake law enforcement calls leading to demands for money from victims. (Read more...) ]]> 2022-11-01T11:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/11/police-warn-of-fake-law-enforcement-arrest-warrant-calls www.secnews.physaphae.fr/article.php?IdArticle=7771435 False Guideline None None Malwarebytes Labs - MalwarebytesLabs Raccoon Stealer admin will be extradited to the US, charged for computer crimes Categories: NewsTags: Raccoon Stealer Tags: Mark Sokolovsky Tags: FBI Tags: Mark Sokolovsky, known online as “raccoonstealer”, was indicted by the US government for being an admin of a malware-as-a-service (MaaS) provider for the Raccoon Stealer malware. (Read more...) ]]> 2022-11-01T09:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/racoon-stealer-admin-will-be-extradited-to-the-us-charged-for-computer-crimes www.secnews.physaphae.fr/article.php?IdArticle=7771436 False None None None Malwarebytes Labs - MalwarebytesLabs Raspberry Robin worm used as ransomware prelude Categories: NewsCategories: RansomwareTags: Raspberry Robin Tags: FakeUpdates Tags: LockBit Tags: Clop Tags: ransomware Microsoft warns that the Raspberry Robin worm has triggered payload alerts on devices of almost 1,000 organizations in the past 30 days and is used to introduce ransomware. (Read more...) ]]> 2022-10-31T20:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/raspberry-robin-worm-used-as-ransomware-prelude www.secnews.physaphae.fr/article.php?IdArticle=7758742 False Ransomware None None Malwarebytes Labs - MalwarebytesLabs A Chrome fix for an in-the-wild exploit is out-Check your version Categories: Exploits and vulnerabilitiesCategories: NewsGoogle has issued an update for Chrome to fix an issue in the V8 JavaScript engine (Read more...) ]]> 2022-10-28T21:45:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/update-chrome-now-and-fix-a-vulnerability-with-an-existing-exploit-for-it www.secnews.physaphae.fr/article.php?IdArticle=7719026 False None None None Malwarebytes Labs - MalwarebytesLabs What is ransomware-as-a-service and how is it evolving? Categories: BusinessDiving into how RaaS works, why it poses a unique threat to businesses, and how small-and-medium-sized (SMBs) businesses can prepare for the next generation of RaaS attacks. (Read more...) ]]> 2022-10-27T18:45:00+00:00 https://www.malwarebytes.com/blog/business/2022/10/what-is-ransomware-as-a-service-and-how-is-it-evolving www.secnews.physaphae.fr/article.php?IdArticle=7710208 False Threat None None Malwarebytes Labs - MalwarebytesLabs Dormant Colors browser hijackers could be used for more nefarious tasks, report says Categories: NewsTags: Dormant Colors Tags: Guardio Tags: browser hijacking Tags: affiliate hijacking Tags: search hijacking Tags: malicious browser extension Dormant Colors, a browser extension campaign, was spotted stealing browser data and hijacking search results and affiliation to thousands of sites. (Read more...) ]]> 2022-10-27T17:30:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/report-popular-yet-harmful-browser-hijackers-could-be-used-for-more-nefarious-tasks www.secnews.physaphae.fr/article.php?IdArticle=7710209 False None None None Malwarebytes Labs - MalwarebytesLabs Medibank customers\' personal data compromised by cyber attack Categories: NewsTags: Medibank Tags: data breach Australian health care insurance company Medibank confirmed that the threat actor behind the cyberattack on the company had access to the data of at least 4 million customers (Read more...) ]]> 2022-10-27T17:15:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/medibank-customers-personal-data-compromised-by-cyber-attack www.secnews.physaphae.fr/article.php?IdArticle=7710210 False Threat None None Malwarebytes Labs - MalwarebytesLabs Maintenance Mode aims to keep phone data private during repairs Categories: NewsTags: Samsung Tags: mobile Tags: cellphone Tags: device Tags: maintenance mode Tags: privacy Tags: security Tags: data Tags: snooping Tags: repairs Tags: fix We take a look at a new mode developed by Samsung which aims to keep data safe during a repair. (Read more...) ]]> 2022-10-27T17:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/maintenance-mode-aims-to-keep-phone-data-private-during-repairs www.secnews.physaphae.fr/article.php?IdArticle=7710211 False None None None Malwarebytes Labs - MalwarebytesLabs Fake Proof-of-Concepts used to lure security professionals Categories: Exploits and vulnerabilitiesCategories: NewsTags: PoC Tags: PoCs Tags: Leiden Tags: GitHub Tags: VirusTotal Tags: AbuseIPDB Researchers from Leiden University analyzed many thousands of Proof-of-Concepts and found that 10 percent of those they found on GitHub are malicious (Read more...) ]]> 2022-10-27T16:45:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/fake-proof-of-concepts-used-to-lure-security-professionals www.secnews.physaphae.fr/article.php?IdArticle=7710212 False None None None Malwarebytes Labs - MalwarebytesLabs New streaming ad technology plays hide-and-seek with gamers Categories: NewsTags: Amazon Tags: Twitch Tags: Prime Tags: streaming Tags: gamer Tags: gaming Tags: advert Tags: advertising Tags: in-game We take a look at new form of ad tech for Twitch streaming viewers, but not players. How does it work? Can it even be successful? (Read more...) ]]> 2022-10-27T16:30:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/new-streaming-ad-technology-plays-hide-and-seek-with-gamers www.secnews.physaphae.fr/article.php?IdArticle=7710213 False None None None Malwarebytes Labs - MalwarebytesLabs Critical OpenSSL fix due Nov 1-what you need to know Categories: NewsTags: fix Tags: bug Tags: vulnerability Tags: exploit Tags: attack Tags: patch Tags: update Tags: OpenSSL Tags: v3 Tags: v1 Tags: 3.0.5. Version 3.0.7 of OpenSSL will fix the software's first critical issue for six years. (Read more...) ]]> 2022-10-27T15:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/critical-openssl-fix-due-november-1st-get-ready-to-patch www.secnews.physaphae.fr/article.php?IdArticle=7710214 False None None None Malwarebytes Labs - MalwarebytesLabs Chrome users, you have 3 months to say goodbye to Windows 7 and 8.1 Categories: NewsTags: Google Chrome Tags: Chrome 110 Tags: Windows 7 Tags: Windows 10 Tags: Windows 11 Tags: Windows 8.1 Tags: Windows Subsystem for Android Tags: WSA Chrome will not be there for you when Microsoft ends its Extended Security Updates program for legacy Windows versions early next year. (Read more...) ]]> 2022-10-27T13:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/next-year-chrome-will-start-forcing-users-to-update-their-windows www.secnews.physaphae.fr/article.php?IdArticle=7710215 False None None None Malwarebytes Labs - MalwarebytesLabs US agencies issue warning about DAIXIN Team ransomware Categories: NewsCategories: RansomwareTags: DAIXIN Tags: FBI Tags: CISA Tags: HHS Tags: ransomware team Tags: DAIXIN Team Tags: ransomware The FBI, CISA, and HSH have issued a joint advisory about a new threat to healthcare organizations (Read more...) ]]> 2022-10-26T23:45:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/fbi-cisa-hhs-issue-joint-alert-about-daixin-ransomware-team www.secnews.physaphae.fr/article.php?IdArticle=7693492 False Ransomware,Threat None 2.0000000000000000 Malwarebytes Labs - MalwarebytesLabs Point-of-sale malware used to steal 167,000 credit cards Categories: NewsTags: POS Tags: malware Tags: credit card Tags: credit identity theft Tags: C2 Tags: MajikPOS Tags: Treasure Hunter Researchers have discovered the theft of 167,000 sets of credit card detials by MajikPOS and Treasure Hunter POS malware (Read more...) ]]> 2022-10-26T22:30:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/point-of-sale-malware-used-stole-the-details-of-over-167000-credit-cards www.secnews.physaphae.fr/article.php?IdArticle=7693493 False Malware None 2.0000000000000000 Malwarebytes Labs - MalwarebytesLabs iPhone zero-day. Update your devices now! Categories: NewsTags: iPhone Tags: iPad Tags: Apple Tags: zero day Tags: exploit Tags: bug Tags: threat Tags: CVE-2022-42847 A zero-day bug that affects iPhones and iPads is being exploited in the wild (Read more...) ]]> 2022-10-26T17:15:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/zero-day-threat-discovered-for-iphones-and-ipads.-update-your-devices-now www.secnews.physaphae.fr/article.php?IdArticle=7693494 False None None None Malwarebytes Labs - MalwarebytesLabs Malformed signature trick can bypass Mark of the Web Categories: NewsTags: MOTW Tags: mark of the web Tags: signature Tags: malformed Tags: malware Tags: ransomware Tags: bypass Tags: SmartScreen We take a look at reports that malware authors are using what appears to be a years-old bug to bypass Mark of the Web alerts. (Read more...) ]]> 2022-10-26T14:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/malware-authors-use-malformed-signature-trick-to-bypass-mark-of-the-web www.secnews.physaphae.fr/article.php?IdArticle=7693495 False Malware None None Malwarebytes Labs - MalwarebytesLabs An interview with cyber threat hunter Hiep Hinh Categories: BusinessHiep Hinh is a Principal MDR Analyst at Malwarebytes, where he supports 24/7/365 Managed Detection and Response (MDR) efforts. In this post, we talk to Hiep about what he's learned about threat hunting over his 16+ year career. (Read more...) ]]> 2022-10-25T04:00:00+00:00 https://www.malwarebytes.com/blog/business/2022/10/an-interview-with-cyber-threat-hunter-hiep-hinh www.secnews.physaphae.fr/article.php?IdArticle=7677584 False Threat None None Malwarebytes Labs - MalwarebytesLabs Cisco warns of ISE vulnerability with no fixed release or workaround Categories: Exploits and vulnerabilitiesCategories: NewsTags: Cisco Tags: Identity Services Engine Tags: AnyConnect VPN server Tags: CVE-2022-20822 Tags: CVE-2022-20959 Tags: CVE-2022-20933 Tags: input validation Cisco's latest security advisory includes a vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) that could allow an attacker to read and delete files. (Read more...) ]]> 2022-10-24T20:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/cisco-patch-needed-for-remote-file-access-vulnerability-in-identity-services-engine www.secnews.physaphae.fr/article.php?IdArticle=7669153 False Vulnerability None None Malwarebytes Labs - MalwarebytesLabs A gym heist in London goes cyber Categories: PodcastThis past summer, a woman's bag was stolen from her gym locker in London. Just hours later, thousands of pounds had been drained from her bank. (Read more...) ]]> 2022-10-24T15:30:00+00:00 https://www.malwarebytes.com/blog/podcast/2022/10/a-gym-heist-goes-cyber-in-london www.secnews.physaphae.fr/article.php?IdArticle=7669154 False None None None Malwarebytes Labs - MalwarebytesLabs An odd kind of cybercrime: Gift vouchers, medical records, and...food Categories: NewsTags: food Tags: medical Tags: nhs Tags: gousto Tags: compromise Tags: laptop Tags: vouchers Peter Foy racked up a peculiar list of compromises before being brought to justice (Read more...) ]]> 2022-10-24T14:30:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/bogus-gift-vouchers-open-gateway-to-medical-records-and-food-plundering www.secnews.physaphae.fr/article.php?IdArticle=7669155 False None None None Malwarebytes Labs - MalwarebytesLabs Healthcare site leaks personal health information via Google and Meta tracking pixels Categories: NewsCategories: PrivacyTags: personal health information Tags: Advocate Aurora Health Tags: tracking pixels Tags: privacy Tags: browser guard Advocate Aurora Health has disclosed that its websites may have shared visitor's identity and personal health information with Google and Meta. (Read more...) ]]> 2022-10-24T11:15:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/health-care-provider-notifies-patients-of-potential-breach-of-personal-data-due-to-tracking-pixels www.secnews.physaphae.fr/article.php?IdArticle=7669156 False None None None Malwarebytes Labs - MalwarebytesLabs Former cop abused unrevoked system access to extort women Categories: NewsCategories: PrivacyTags: Snapchat Tags: Bryan Wilson Tags: LMPD Tags: Louisville Metropolitan Police Department Tags: cyberstalking Tags: sextortion Details of a cyberstalking and sextortion case involving a former cop and his Snapchat victims have come to light. (Read more...) ]]> 2022-10-21T16:30:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/former-kentucky-cop-abused-access-to-hack-snapchat-accounts www.secnews.physaphae.fr/article.php?IdArticle=7615907 False None None None Malwarebytes Labs - MalwarebytesLabs Looking for student debt relief? Watch out for scammers says the FBI Categories: NewsCategories: ScamsTags: One-Time Federal Student Loan Debt Relief Tags: FBI Tags: student loan relief scam The FBI has warned that scammers are likely to target people looking for student loan relief now that applications have opened. (Read more...) ]]> 2022-10-21T15:30:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/psa-scammers-likely-to-target-student-loan-relief-applicants www.secnews.physaphae.fr/article.php?IdArticle=7615908 False None None None Malwarebytes Labs - MalwarebytesLabs Gas, a positive social network for teens (no, really) Categories: NewsTags: Gas Tags: social network Tags: poll Tags: polls Tags: mobile Tags: iPhone Tags: app Tags: schools Tags: kids Tags: teens Tags: teenagers Tags: fun We take a look at a fairly exclusive app designed for teens which claims to come with none of the nastiness found elsewhere online. (Read more...) ]]> 2022-10-21T13:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/having-a-gas-the-positive-vibes-social-network www.secnews.physaphae.fr/article.php?IdArticle=7615909 False None None None Malwarebytes Labs - MalwarebytesLabs Third-party application patching: Everything you need to know for your business Categories: BusinessIn this post, we cover the importance of third-party application patching and the challenges it can solve for your organization. (Read more...) ]]> 2022-10-20T16:00:00+00:00 https://www.malwarebytes.com/blog/business/2022/10/third-party-application-patching-everything-you-need-to-know-for-your-business www.secnews.physaphae.fr/article.php?IdArticle=7593763 False Patching None None Malwarebytes Labs - MalwarebytesLabs Suspected LAPSUS$ group member arrested in Brazil Categories: CybercrimeCategories: NewsTags: Brasil Tags: Lapsus$ Tags: Telegram Tags: Dark Web Tags: data exfiltration Tags: SIM jacking Tags: arrests A person suspected of being a member of hacking group Lapsus$ has been arrested by Brazilian police (Read more...) ]]> 2022-10-20T13:30:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/suspected-lapsus-group-member-arrested-in-brazil www.secnews.physaphae.fr/article.php?IdArticle=7593764 False None None None Malwarebytes Labs - MalwarebytesLabs Microsoft breach reveals some customer data Categories: NewsTags: Microsoft Tags: breach Tags: data Tags: exposed Tags: exposure Tags: endpoint We take a look at word of accidental data exposure leading to a reveal of Microsoft customer data. (Read more...) ]]> 2022-10-20T13:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/microsoft-breach-reveals-some-customer-data www.secnews.physaphae.fr/article.php?IdArticle=7593765 False Guideline None None Malwarebytes Labs - MalwarebytesLabs New PHP-based Ducktail infostealer is now after crypto wallets Categories: NewsCategories: ThreatsTags: Ducktail Tags: infosteal Tags: information stealer Tags: Zscaler Tags: Trojan Tags: Facebook Business Tags: Facebook API graph Tags: Facebook Ads Manager Tags: PHP malware An information stealer known to go after the Facebook accounts of businesses is now after crypto wallets, too. (Read more...) ]]> 2022-10-20T12:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/this-new-php-based-ducktail-infostealer-is-now-after-crypto-wallets www.secnews.physaphae.fr/article.php?IdArticle=7593766 False None None None Malwarebytes Labs - MalwarebytesLabs Venus ransomware targets remote desktop services Categories: NewsTags: Venus Ransomware Tags: RDP Tags: remote desktop services Tags: encrypt Tags: fraud Tags: ransom We take a look at reports of Venus ransomware targeting remote desktop services/RDP. (Read more...) ]]> 2022-10-20T11:15:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/venus-ransomware-targets-remote-desktop-services www.secnews.physaphae.fr/article.php?IdArticle=7593767 False Ransomware None None Malwarebytes Labs - MalwarebytesLabs Microsoft fixes driver blocklist placing users at risk from BYOVD attacks Categories: NewsTags: BYOVD Tags: bring your own vulnerable driver Tags: blocklist Tags: microsoft Tags: windows updates We take a look at reports that Microsoft's driver blocklist hadn't been updated for three years, leaving people at risk from BYOVD attacks. (Read more...) ]]> 2022-10-20T11:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/microsoft-fixes-driver-blocklist-placing-users-at-risk-from-byovd-attacks www.secnews.physaphae.fr/article.php?IdArticle=7593768 False None None None Malwarebytes Labs - MalwarebytesLabs 5 essential security tips for SMBs Categories: BusinessFive things that every business can do (and should be paying attention to). (Read more...) ]]> 2022-10-20T05:00:00+00:00 https://www.malwarebytes.com/blog/business/2022/10/5-essential-security-tips-for-smbs www.secnews.physaphae.fr/article.php?IdArticle=7593769 False None None None Malwarebytes Labs - MalwarebytesLabs Man scammed IRL for a phone he sold online Categories: NewsTags: scam Tags: fake Tags: fraud Tags: sale Tags: selling Tags: bank transfer Tags: app Tags: phone Tags: mobile Tags: social media We take a look at reports of scammers using fake bank transfer apps to make it look as though they've bought your for-sale item. (Read more...) ]]> 2022-10-19T20:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/man-scammed-irl-for-a-phone-he-sold-online www.secnews.physaphae.fr/article.php?IdArticle=7571919 False None None None Malwarebytes Labs - MalwarebytesLabs Ransomware attack freezes newspaper printing system Categories: NewsCategories: RansomwareStimme Mediengruppe, a German media group, halted production of printed newspapers after a ransomware attack on Friday. (Read more...) ]]> 2022-10-19T19:45:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/ransomware-attack-freezes-newspaper-printing-system www.secnews.physaphae.fr/article.php?IdArticle=7571920 False Ransomware None None Malwarebytes Labs - MalwarebytesLabs Why Log4Text is not another Log4Shell Categories: Exploits and vulnerabilitiesCategories: NewsTags: Log4Text Tags: Apache Tags: Commons Text Tags: CVE-2022-42889 Tags: Log4j Tags: Log4Shell Tags: interpolators Log4Text is a recently found vulnerability in Apache Commons. Log4Text provoked a knee jerk reaction because it reminds us of Log4Shell. So should we worry? (Read more...) ]]> 2022-10-19T19:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/why-log4text-is-not-another-log4shell www.secnews.physaphae.fr/article.php?IdArticle=7571921 False Vulnerability None None Malwarebytes Labs - MalwarebytesLabs DeadBolt ransomware gang tricked into giving victims free decryption keys Categories: NewsCategories: RansomwareTags: Dutch Tags: law enforcement Tags: DeadBolt Tags: ransomware Tags: decryption keys Tags: responders.nu With the idea provided by an incident response company, Dutch police used a clever trick to get 150 DeadBolt ransomware decryption keys for free. (Read more...) ]]> 2022-10-19T11:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/deadbolt-ransomware-gang-tricked-into-giving-victims-free-decryption-keys www.secnews.physaphae.fr/article.php?IdArticle=7571922 False Ransomware None None Malwarebytes Labs - MalwarebytesLabs How to spot a scam Categories: NewsCategories: PersonalIn every scam no matter how sophisticated or how amateur, there are two red flags. (Read more...) ]]> 2022-10-18T14:45:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/how-to-spot-a-scam www.secnews.physaphae.fr/article.php?IdArticle=7549576 False None None None Malwarebytes Labs - MalwarebytesLabs Warning: "FaceStealer" iOS and Android apps steal your Facebook login Categories: AwarenessCategories: NewsTags: FaceStealer Tags: Facebook stealer Tags: Facebook Tags: Nathan Collier Tags: Meta Tags: fake Android apps Tags: fake iOS apps FaceStealer is back. As a seasoned threat to legitimate app stores, expect it to be gone and then back again. (Read more...) ]]> 2022-10-18T14:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/warning-facestealer-ios-and-android-apps-steal-your-facebook-login www.secnews.physaphae.fr/article.php?IdArticle=7549577 False Threat None None Malwarebytes Labs - MalwarebytesLabs Criminal group busted after stealing hundreds of keyless cars Categories: NewsTags: Europol Tags: Eurojust Tags: French cars Tags: key-less entry Europol says it's helped bust an organized crime gang that specialized in stealing French keyless cars. (Read more...) ]]> 2022-10-18T11:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/criminal-group-busted-after-stealing-hundreds-of-keyless-cars www.secnews.physaphae.fr/article.php?IdArticle=7549578 False None None None Malwarebytes Labs - MalwarebytesLabs Fake tractor fraudsters plague online transactions Categories: NewsTags: Tractors Tags: Australia Tags: scam Tags: fake Tags: escrow Tags: advert Tags: advertising Tags: advertisement We take a look at reports of the agriculture sector increasingly running into fake online adverts for tractors, at great cost to unfortunate buyers. (Read more...) ]]> 2022-10-18T10:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/fake-tractor-fraudsters-plague-online-transactions www.secnews.physaphae.fr/article.php?IdArticle=7549579 False None None None Malwarebytes Labs - MalwarebytesLabs Thermal cameras could help reveal your password Categories: NewsCategories: ThreatsTags: ThermoSecure Tags: University of Glasgow Tags: Dr. Mohamed Khamis Tags: Dr. John Williamson Tags: Norah Alotaibi Tags: thermal attack ThermoSecure, a system developed by researchers at the University of Glasgow demonstrated how thermal cameras and AI can steal credentials from, literally, under our noses. (Read more...) ]]> 2022-10-18T09:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/thermal-cameras-could-help-reveal-your-password www.secnews.physaphae.fr/article.php?IdArticle=7549580 False None None None Malwarebytes Labs - MalwarebytesLabs Android and iOS leak some data outside VPNs Categories: NewsTags: VPN Tags: iOS Tags: Android Tags: tunnel Tags: captive portal Tags: leak Tags: anonymity “Block connections without VPN” doesn't block all connections without a VPN and “Always on VPN” isn't always on. (Read more...) ]]> 2022-10-16T22:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/android-and-ios-suffer-from-leaky-tunnels www.secnews.physaphae.fr/article.php?IdArticle=7517898 False None None 3.0000000000000000 Malwarebytes Labs - MalwarebytesLabs FBI, CISA warn of disinformation ahead of midterms Categories: NewsTags: 2022 US midterm election Tags: US election Tags: FBI Tags: CISA Tags: With the US midterm elections in sight, federal agencies are warning Americans that foreign actors are likely to use information manipulation tactics (Read more...) ]]> 2022-10-15T18:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/fbi-and-cisa-urge-americans-to-be-critical-of-information-in-light-of-midterm-election www.secnews.physaphae.fr/article.php?IdArticle=7493359 False None None None Malwarebytes Labs - MalwarebytesLabs Introducing Malwarebytes Managed Detection and Response (MDR) Categories: BusinessWith Malwarebytes MDR, our team of cybersecurity professionals acts as an extension to your security team. (Read more...) ]]> 2022-10-13T21:30:00+00:00 https://www.malwarebytes.com/blog/business/2022/10/introducing-malwarebytes-managed-detection-and-response-mdr www.secnews.physaphae.fr/article.php?IdArticle=7443787 False None None None Malwarebytes Labs - MalwarebytesLabs Android and Chrome start showing passwords the door Categories: NewsTags: Google Tags: passkeys Tags: Android Tags: Chrome Tags: public key Tags: private key Tags: authenticator Tags: WebAuthn Passwords won't disappear any time soon, but a viable alternative is taking shape (Read more...) ]]> 2022-10-13T20:45:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/google-is-bringing-passkey-support-to-both-android-and-chrome www.secnews.physaphae.fr/article.php?IdArticle=7443788 False None None None Malwarebytes Labs - MalwarebytesLabs Chinese APT\'s favorite vulnerabilities revealed Categories: Exploits and vulnerabilitiesCategories: NewsTags: Chinese APT Tags: advanced persistent threat Tags: APT Tags: CISA Tags: NSA Tags: FBI Tags: security advisory CISA, the NSA and the FBI have compiled a list of the vulnerabilities targeted by state-sponsorted threat actors from China. (Read more...) ]]> 2022-10-13T16:15:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/psa-chinese-apts-target-flaws-that-take-full-control-of-systems www.secnews.physaphae.fr/article.php?IdArticle=7443789 False Threat None None Malwarebytes Labs - MalwarebytesLabs Only half of teens agree they "feel supported online" by parents Categories: NewsCategories: PrivacyOnly one in two teens agree that they " feel supported online" by their parents, according to new research from Malwarebytes and 1Password on growing up and raising children online (Read more...) ]]> 2022-10-13T13:15:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/only-half-of-teens-agree-they-feel-supported-online-by-parents www.secnews.physaphae.fr/article.php?IdArticle=7443790 False None None None Malwarebytes Labs - MalwarebytesLabs UK government sounds alarm on tax scams Categories: NewsTags: HMRC Tags: UKGOV Tags: tax Tags: return Tags: phish Tags: fake Tags: scam Tags: refund Tags: rebate Be on your guard for scammers offering fake rebates (Read more...) ]]> 2022-10-12T22:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/ukgov-sounds-alarm-on-hmrc-tax-scams www.secnews.physaphae.fr/article.php?IdArticle=7422299 False None None None Malwarebytes Labs - MalwarebytesLabs Update now! October patch Tuesday fixes actively used zero-day...but not the one you expected Categories: Exploits and vulnerabilitiesCategories: NewsTags: Microsoft Tags: Apple Tags: Google Tags: Android Tags: Samsung Tags: Xiaomi Tags: Adobe Tags: SAP Tags: VMWare Tags: Fortinet Tags: CVE-2022-41033 Tags: CVE-2022-41040 Tags: zero-day No fix for ProxyNotShell (Read more...) ]]> 2022-10-12T17:45:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/update-now-october-patch-tuesday-fixes-actively-used-zero-day www.secnews.physaphae.fr/article.php?IdArticle=7422300 False None None None Malwarebytes Labs - MalwarebytesLabs Winnti APT group docks in Sri Lanka for new campaign Categories: Threat IntelligenceTags: Winnti Tags: APT Tags: China Tags: Sri Lanka Tags: India Tags: Keyplug Tags: malware Tags: dropbox Tags: C2 Tags: DBoxAgent In this research paper, we document a new campaign we attribute to the Winnti APT group. The victims are located in Sri Lanka at a point in time where the country is going through economic hardship while China makes headlines for docking on of its special vessels there. (Read more...) ]]> 2022-10-12T17:00:00+00:00 https://www.malwarebytes.com/blog/threat-intelligence/2022/10/winnti-apt-group-docks-in-sri-lanka-for-new-campaign www.secnews.physaphae.fr/article.php?IdArticle=7533061 False None None None Malwarebytes Labs - MalwarebytesLabs Top 5 ransomware detection techniques: Pros and cons of each Categories: BusinessDetecting ransomware can be tricky. Attackers use obfuscation and evasion techniques to avoid detection, and new ransomware variants are produced every day. In this post, we look at five ransomware detection techniques and their pros and cons. (Read more...) ]]> 2022-10-12T16:15:00+00:00 https://www.malwarebytes.com/blog/business/2022/10/top-5-ransomware-detection-techniques-pros-and-cons-of-each www.secnews.physaphae.fr/article.php?IdArticle=7422301 False Ransomware None None Malwarebytes Labs - MalwarebytesLabs An 18 year scam odyssey of stranded astronauts Categories: NewsTags: scam Tags: fake Tags: fraud Tags: phish Tags: romance Tags: 419 Tags: astronaut Tags: space Tags: station Tags: shuttle Tags: rocket Tags: fake Tags: email We take a look at a scam which has come around every couple of years and which has finally claimed a sizable bounty from a victim. (Read more...) ]]> 2022-10-11T23:30:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/an-18-year-scam-odyssey-of-stranded-astronauts www.secnews.physaphae.fr/article.php?IdArticle=7400163 False None None None Malwarebytes Labs - MalwarebytesLabs Security awareness campaign highlights things your bank will never say Categories: NewsTags: Bank Tags: awareness Tags: campaign Tags: never say that Tags: security Tags: phish Tags: phishing We take a look at an awareness campaign based around the kind of thing you should never hear your bank saying. (Read more...) ]]> 2022-10-11T23:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/security-awareness-campaign-highlights-things-your-bank-will-never-say www.secnews.physaphae.fr/article.php?IdArticle=7400164 False None None None Malwarebytes Labs - MalwarebytesLabs Court rules webcam monitoring of remote employee was an invasion of privacy Categories: NewsCategories: PrivacyTags: Dutch Tags: court Tags: webcam monitoring Tags: privacy A Dutch court has ruled that demanding a remote employee submit to constant webcam monitoring was an invasion of their privacy (Read more...) ]]> 2022-10-11T11:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/court-rules-constant-webcam-monitoring-of-remote-employee-to-be-an-invasion-of-privacy www.secnews.physaphae.fr/article.php?IdArticle=7443796 False None None None Malwarebytes Labs - MalwarebytesLabs Smart lights vulnerable to "blink and you\'ll miss it" attack Categories: NewsTags: smart light system Tags: light bulb Tags: IoT Tags: Internet of Things Tags: compromise Tags: CVE In 2022, even our light bulbs have CVEs (]]> 2022-10-11T10:45:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/smart-lighting-system-suffers-a-blink-and-youll-miss-it-attack www.secnews.physaphae.fr/article.php?IdArticle=7400165 False None None None Malwarebytes Labs - MalwarebytesLabs Teen talk: What it\'s like to grow up online, and the role of parents: Lock and Code S03E21 Categories: PodcastThis week on Lock and Code, we speak with a Bay Area teen about the difficulties of growing up with the Internet, and with 1Password co-founder Sara Teare about how to raise kids online today. (Read more...) ]]> 2022-10-10T15:00:00+00:00 https://www.malwarebytes.com/blog/podcast/2022/10/forever-connected-lock-and-code-s03e21 www.secnews.physaphae.fr/article.php?IdArticle=7386319 False None None None Malwarebytes Labs - MalwarebytesLabs White House unveils Blueprint for an AI Bill of Rights Categories: NewsThe blueprint aims to make AI less harmful to Americans by holding its creators accountable. (Read more...) ]]> 2022-10-10T13:30:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/the-white-houses-new-bill-of-rights-holds-big-tech-companies-accountable-for-their-ai www.secnews.physaphae.fr/article.php?IdArticle=7386320 False None None None Malwarebytes Labs - MalwarebytesLabs Romance scammer given 25 years of alone time Categories: NewsTags: Scam Tags: spam Tags: phish Tags: BEC Tags: business email compromise Tags: romance Tags: fake Tags: fraud Tags: wire Tags: money mule We take a look at a scammer, involved in both BEC fraud and romance scams, who has been jailed for a whopping 25 years. (Read more...) ]]> 2022-10-07T16:15:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/romance-and-business-email-compromise-scammer-given-25-years-of-alone-time www.secnews.physaphae.fr/article.php?IdArticle=7341355 False None None None Malwarebytes Labs - MalwarebytesLabs Credential stuffers take aim at Final Fantasy XIV players Categories: NewsTags: Final Fantasy XIV Tags: Square Enix Tags: phishing Tags: credential stuffing Tags: theft Tags: steal Tags: compromise Tags: hijack Attackers are preying on accounts with passwords used on other sites and services. (Read more...) ]]> 2022-10-07T15:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/credential-stuffers-take-aim-at-final-fantasy-xiv-players www.secnews.physaphae.fr/article.php?IdArticle=7386323 False None None None Malwarebytes Labs - MalwarebytesLabs Meta accuses apps of stealing WhatsApp accounts Categories: NewsTags: Meta Tags: WhatsApp Tags: apps Tags: mobile Tags: android Tags: device Tags: account Tags: credentials Tags: spam Meta is suing developers for multiple credential-stealing apps found on Google Play and elsewhere. (Read more...) ]]> 2022-10-07T15:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/meta-locks-horns-with-apps-allegedly-compromising-whatsapp-accounts www.secnews.physaphae.fr/article.php?IdArticle=7386322 False None None None Malwarebytes Labs - MalwarebytesLabs Malwarebytes\' modernized bug bounty program-here\'s all you need to know Categories: BusinessWe've updated our bug bounty program with increased rewards and a new way to submit vulnerabilities (Read more...) ]]> 2022-10-07T10:30:00+00:00 https://www.malwarebytes.com/blog/business/2022/10/malwarebytes-bugbounty-modernized-why-how-where www.secnews.physaphae.fr/article.php?IdArticle=7341356 False None None None Malwarebytes Labs - MalwarebytesLabs Android vulnerabilities could allow arbitrary code execution Categories: Exploits and vulnerabilitiesCategories: NewsTags: Google Tags: Android Tags: Qualcomm Tags: WLAN Tags: CVE-2022-25720 Tags: CVE-2022-25718 Tags: CVE-2022-25748 Tags: CVE-2022-20419 Tags: ActivityManager Google has issued patches for 42 vulnerabilities, including four marked critical (Read more...) ]]> 2022-10-07T01:45:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/vulnerabilities-in-google-android-could-allow-for-arbitrary-code-execution www.secnews.physaphae.fr/article.php?IdArticle=7341357 False None None None Malwarebytes Labs - MalwarebytesLabs Hundreds of Microsoft SQL servers found to be backdoored Categories: NewsTags: Microsoft SQL Tags: brute force Tags: Maggie Tags: Extended Stored Procedure Researchers have found a backdoor that specifically targets Microsoft SQL servers. (Read more...) ]]> 2022-10-06T15:30:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/hundreds-of-microsoft-sql-servers-found-to-be-backdoored www.secnews.physaphae.fr/article.php?IdArticle=7325312 False None None None Malwarebytes Labs - MalwarebytesLabs Data Access Agreement offers a new path for UK - US data requests Categories: NewsTags: Data access agreement Tags: DAA Tags: UK Tags: US Tags: crime Tags: criminal Tags: telecommunications Tags: request Tags: share Tags: data We take a look at a possibly controversial new way for two governments to make direct data requests in cases of law enforcement. (Read more...) ]]> 2022-10-06T15:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/data-access-agreement-offers-a-new-path-for-uk-us-data-requests www.secnews.physaphae.fr/article.php?IdArticle=7325313 False None None None Malwarebytes Labs - MalwarebytesLabs Cyberstalking, pig masks, and cockroaches: Former eBay execs are sentenced Categories: NewsTags: ebay Tags: harassment Tags: doxing Tags: online threats Tags: stalking Tags: cyberstalking Two former eBay executives have been sentenced to prison for their roles in a cyberstalking campaign aimed at the company's critics. (Read more...) ]]> 2022-10-06T13:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/cyberstalking-pig-masks-and-cockroaches-former-ebay-execs-are-sentenced www.secnews.physaphae.fr/article.php?IdArticle=7325314 False None None None Malwarebytes Labs - MalwarebytesLabs BOD 23-01: Improving asset visibility and vulnerability detection on federal networks Categories: NewsTags: BOD 23-01 Tags: asset visibility Tags: vulnerability detection Tags: federal networks Tags: CISA Tags: CDM Tags: CISA has issued BOD 23-10 which requires all FCEB entities to maintain an inventory of all IPv4- and IPv6-networked assets, perform regular, periodic scans of these devices, and provide this information to CISA. (Read more...) ]]> 2022-10-06T11:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/improving-asset-visibility-and-vulnerability-detection-on-federal-networks www.secnews.physaphae.fr/article.php?IdArticle=7325315 False Vulnerability None None Malwarebytes Labs - MalwarebytesLabs Admin from hell facing 10 years for sabotaging ex-employer\'s network Categories: NewsTags: hire Tags: hiring Tags: rehire Tags: insider threat Tags: ex-employee Tags: logins Tags: network Tags: FBI Failing to keep a tight reign on ex-employees' credentials can lead to all manner of chaos. (Read more...) ]]> 2022-10-05T22:45:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/ex-employee-faces-10-years-in-prison-for-misusing-login-details www.secnews.physaphae.fr/article.php?IdArticle=7312390 False Guideline None None Malwarebytes Labs - MalwarebytesLabs Bogus job offers hide trojanised open-source software Categories: NewsTags: malware Tags: ZINC Tags: microsoft Tags: infection Tags: C&C Tags: open source Tags: job offer Tags: fake Tags: LinkedIn A North Korean ZINC group is accused of creating compromised versions of KiTTY, PuTTY, TightVNC, and other popular open-source software apps (Read more...) ]]> 2022-10-05T15:45:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/bogus-job-offers-lead-to-weaponised-open-source-software www.secnews.physaphae.fr/article.php?IdArticle=7312391 False Guideline,Medical APT 38 None Malwarebytes Labs - MalwarebytesLabs Kim Kardashian gets huge fine for crypto ad Categories: NewsThe SEC fined the celebrity $1.26 million for touting a crypto security without telling followers what she was paid to promote it. (Read more...) ]]> 2022-10-05T11:30:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/kim-kardashian-violates-1933-law-after-posting-emex-crypto-security-ad www.secnews.physaphae.fr/article.php?IdArticle=7312392 False None None None Malwarebytes Labs - MalwarebytesLabs TikTok\'s "secret operation" tracks you even if you don\'t use it Categories: NewsCategories: PrivacyIf you think TikTok is acting like Google or Meta when collecting data, you're not wrong. (Read more...) ]]> 2022-10-04T15:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/tiktoks-secret-operation-tracks-you-even-if-you-dont-use-it www.secnews.physaphae.fr/article.php?IdArticle=7300318 False None None None Malwarebytes Labs - MalwarebytesLabs Huge increase in smishing scams, warns IRS Categories: NewsCategories: ScamsTags: IRS Tags: smishing The Internal Revenue Service has issued a warning for taxpayers over a recent increase in IRS-themed smishing scams. (Read more...) ]]> 2022-10-04T12:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/huge-increase-in-smishing-scams-warns-irs www.secnews.physaphae.fr/article.php?IdArticle=7300319 False None None None Malwarebytes Labs - MalwarebytesLabs Ransomware review: September 2022 Categories: Threat IntelligenceIn September, LockBit accounted for almost half of all known ransomware attacks. (Read more...) ]]> 2022-10-04T11:00:00+00:00 https://www.malwarebytes.com/blog/threat-intelligence/2022/10/ransomware-review-september-2022 www.secnews.physaphae.fr/article.php?IdArticle=7325321 False Ransomware None None Malwarebytes Labs - MalwarebytesLabs Ransomware-affected school district refuses to pay, gets stolen data released Categories: NewsTags: compromise Tags: ransomware Tags: leak Tags: extortion Tags: LAUSD Data stolen from Los Angeles Unified School District has been leaked online, after staff refused to pay the ransom related to a ransomware attack. (Read more...) ]]> 2022-10-04T08:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/public-school-district-has-data-leaked-by-ransomware-gang www.secnews.physaphae.fr/article.php?IdArticle=7312395 False Ransomware None None Malwarebytes Labs - MalwarebytesLabs Actively exploited vulnerability in Bitbucket Server and Data Center Categories: Exploits and vulnerabilitiesCategories: NewsTags: Atlassian Tags: Bitbucket Tags: git Tags: CVE-2022-36804 Tags: RCE Tags: read permission International cybersecurity authorities are warning about the active exploitation of a vulnerability in Bitbucket Server and Data Center (Read more...) ]]> 2022-10-03T12:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/warnings-about-actively-exploited-vulnerability-in-bitbucket-server-and-data-center www.secnews.physaphae.fr/article.php?IdArticle=7291816 False Vulnerability None None Malwarebytes Labs - MalwarebytesLabs Romance scammer deepfakes Mark Ruffalo to con elderly artist Categories: NewsTags: romance scam Tags: deepfake Tags: mark ruffalo Tags: manga Tags: theft Tags: online Tags: social media We take a look at a romance scammer getting ahead of the game and using deepfakes to steal a huge amount of money from a victim. (Read more...) ]]> 2022-10-03T10:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/romance-scammer-makes-bank-with-deepfake-mark-ruffalo www.secnews.physaphae.fr/article.php?IdArticle=7291817 False None None None Malwarebytes Labs - MalwarebytesLabs Why (almost) everything we told you about passwords was wrong NewsSorry. (Read more...) ]]> 2022-10-02T19:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/10/why-almost-everything-we-told-you-about-passwords-was-wrong www.secnews.physaphae.fr/article.php?IdArticle=7279238 False None None None Malwarebytes Labs - MalwarebytesLabs Two new Exchange Server zero-days in the wild Categories: Exploits and vulnerabilitiesCategories: NewsTags: Exchange Tags: ProxyShell Tags: remote PowerShell Tags: web shell Tags: CVE-2022-41040 Tags: CVE-2022-41082 Tags: SSRF Tags: RCE Two ProxyShell-like vulnerabilities are being used to exploit Microsoft Exchange Servers (Read more...) ]]> 2022-09-30T13:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/two-new-exchange-zero-days-that-look-and-feel-like-proxyshell-part-2 www.secnews.physaphae.fr/article.php?IdArticle=7234675 False None None None Malwarebytes Labs - MalwarebytesLabs Local government cybersecurity: 5 best practices Categories: BusinessWith a few best practices, local governments can improve their cybersecurity posture and make it less likely that threat actors attack their systems. We'll break down five best practices for local government cybersecurity in this post. (Read more...) ]]> 2022-09-29T17:00:00+00:00 https://www.malwarebytes.com/blog/business/2022/09/local-government-cybersecurity-5-best-practices www.secnews.physaphae.fr/article.php?IdArticle=7211701 False Threat None None Malwarebytes Labs - MalwarebytesLabs Optus data breach "attacker" says sorry, it was a mistake Categories: NewsTags: Optus Tags: breach Tags: optusdata Tags: text messages Tags: drivers' licenses Tags: Medicare Tags: identity protection A hacker stole the personal information of 10 million Optus customers, threatened to publish them in lots of 10,000 a day unless the ransom was paid, and then suddenly did a 180 degree turn. (Read more...) ]]> 2022-09-29T16:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/optus-data-breach-attacker-says-sorry-it-was-a-mistake www.secnews.physaphae.fr/article.php?IdArticle=7211702 False Data Breach None None Malwarebytes Labs - MalwarebytesLabs Fast Company hacked to send obscene and racist messages Categories: CybercrimeCategories: NewsThe US business magazine appeared to have two separate and related incidents in which it was compromised. (Read more...) ]]> 2022-09-29T12:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/fast-company-is-currently-investigating-how-it-got-hacked www.secnews.physaphae.fr/article.php?IdArticle=7211703 False None None None Malwarebytes Labs - MalwarebytesLabs APT28 attack uses old PowerPoint trick to download malware Categories: NewsTags: APT28 Tags: Fancy Bear Tags: PowerPoint Tags: PowerShell Tags: One Drive Tags: SyncAppvPublishingServer The Russian APT known as Fancy Bear was caught using an old mouseover technique that doesn't need macros (Read more...) ]]> 2022-09-28T21:15:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/powerpoint-mouseover-triggers-powershell-script-for-malware-delivery www.secnews.physaphae.fr/article.php?IdArticle=7189077 False Malware APT 28 None Malwarebytes Labs - MalwarebytesLabs Spyware disguises itself as Zoom downloads Categories: NewsCriminals are taking advantage Zoom's continuing popularity (Read more...) ]]> 2022-09-28T13:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/threat-actors-want-you-to-download-their-zoom-spyware www.secnews.physaphae.fr/article.php?IdArticle=7189078 False None None None Malwarebytes Labs - MalwarebytesLabs FCC moves to block robotexts Categories: NewsCategories: ScamsThe Federal Communications Commission wants mobile carriers to block spam texts at the network level. (Read more...) ]]> 2022-09-28T13:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/fcc-is-finally-moving-forward-with-blocking-spam-texts www.secnews.physaphae.fr/article.php?IdArticle=7234681 False Spam None None Malwarebytes Labs - MalwarebytesLabs Erbium stealer on the hunt for data Categories: NewsTags: erbium Tags: malware Tags: data theft Tags: stealer Tags: wallets Tags: cryptocurrency Tags: browsers Tags: browser Tags: infection Tags: malware as a service We take a look at reports of new data theft malware relying on sold old tricks (Read more...) ]]> 2022-09-28T10:30:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/increasingly-popular-erbium-stealer-on-the-hunt-for-data www.secnews.physaphae.fr/article.php?IdArticle=7189079 False Malware None None Malwarebytes Labs - MalwarebytesLabs 4 times students compromised school cybersecurity Categories: NewsTags: School Tags: password Tags: sticky note Tags: lax security Tags: Sometimes we hear stories about brilliant students that hack their school and get celebrated, but it doesn't always end well. (Read more...) ]]> 2022-09-28T03:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/when-students-hack-their-schools www.secnews.physaphae.fr/article.php?IdArticle=7189080 False Hack None None Malwarebytes Labs - MalwarebytesLabs Facebook users sue Meta for allegedly building "secret workaround" to Apple privacy safeguards Categories: NewsCategories: PrivacyMeta is being sued by a couple of its users for allegedly deliberately circumventing Apple's privacy features on the iPhone. (Read more...) ]]> 2022-09-27T12:15:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/facebook-users-sue-meta-for-attempting-to-bypass-apple-privacy-safeguards www.secnews.physaphae.fr/article.php?IdArticle=7167467 False None None None Malwarebytes Labs - MalwarebytesLabs TikTok faces $28m fine for failing to protect children\'s privacy Categories: NewsTags: ICO Tags: tiktok Tags: data Tags: protection Tags: kids Tags: children Tags: fine Tags: privacy Tags: safety The ICOs is looking to fine TikTok over what it claims are issues related to the UK's data protection laws. (Read more...) ]]> 2022-09-27T12:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/tiktok-faces-28m-fine-for-failing-to-protect-childrens-privacy www.secnews.physaphae.fr/article.php?IdArticle=7167468 False None None None Malwarebytes Labs - MalwarebytesLabs Flaw in some ManageEngine apps is being actively exploited, says CISA Categories: Exploits and vulnerabilitiesCategories: NewsThe critical CVE-2022-35405 flaw affects several Zoho ManageEngine products. Federal and private organizations must patch now! (Read more...) ]]> 2022-09-27T11:30:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/cisa-reveals-flaw-in-some-manageengine-apps-is-actively-exploited www.secnews.physaphae.fr/article.php?IdArticle=7167469 False None None None Malwarebytes Labs - MalwarebytesLabs Exchange servers abused for spam through malicious OAuth applications Categories: NewsTags: Exchange Tags: OAuth Tags: spam Tags: MFA Tags: Transport rules Tags: connector Threat actors have been using malicious OAuth applications to abuse Microsoft Exchange servers for their spam campaign. (Read more...) ]]> 2022-09-27T11:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/exchange-servers-abused-for-spam-through-malicious-oauth-applications www.secnews.physaphae.fr/article.php?IdArticle=7167470 False Spam None None Malwarebytes Labs - MalwarebytesLabs Calling in the ransomware negotiator, with Kurtis Minder: Lock and Code S03E20 Categories: PodcastThis week on Lock and Code, we speak with Kurtis Minder, CEO of GroupSense, about how a company decides to bring in a ransomware negotiator when it's hit with the destructive malware. (Read more...) ]]> 2022-09-26T13:30:00+00:00 https://www.malwarebytes.com/blog/podcast/2022/09/calling-in-the-ransomware-negotiator-with-kurtis-minder-lock-and-code-s03e20 www.secnews.physaphae.fr/article.php?IdArticle=7155427 False Ransomware None None Malwarebytes Labs - MalwarebytesLabs Windows 11 pulls ahead of Windows 10 in anti-phishing stakes Categories: NewsTags: Windows 11 Tags: Windows 10 Tags: phishing Tags: protection Tags: warning Tags: message Tags: Defender Smartscreen We take a look at a new set of security features for Windows 11, and see what Windows 10 can expect to miss out on. (Read more...) ]]> 2022-09-26T13:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/windows-11-pulls-ahead-of-windows-10-in-anti-phishing-stakes www.secnews.physaphae.fr/article.php?IdArticle=7155428 False None None None Malwarebytes Labs - MalwarebytesLabs Twitter fixes bug that left devices logged in after password reset Categories: NewsCategories: PrivacyTwitter says it has fixed a bug that meant users weren't logged out of active sessions on all devices after manually resetting their passwords. (Read more...) ]]> 2022-09-26T12:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/twitter-fixes-bug-that-left-devices-logged-in-after-password-reset www.secnews.physaphae.fr/article.php?IdArticle=7155429 False None None None Malwarebytes Labs - MalwarebytesLabs Critical WhatsApp vulnerabilities patched: Check you\'ve updated! Categories: Exploits and vulnerabilitiesCategories: NewsTags: WhatsApp Tags: CVE-2022-36934 Tags: CVE-2022-27492 Two RCE vulnerabilities were patched in WhatsApp. Both vulnerabilities were video related and could be used to compromise your device. (Read more...) ]]> 2022-09-26T10:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/critical-whatsapp-vulnerabilities-patched-check-youve-updated www.secnews.physaphae.fr/article.php?IdArticle=7155430 False None None None Malwarebytes Labs - MalwarebytesLabs Malwarebytes recognized as endpoint security leader by G2 Categories: BusinessG2 has released their Fall 2022 reports, ranking Malwarebytes as the leader across a number of endpoint protection categories based on factual customer reviews. (Read more...) ]]> 2022-09-23T18:00:00+00:00 https://www.malwarebytes.com/blog/business/2022/09/malwarebytes-recognized-as-endpoint-security-leader-by-g2 www.secnews.physaphae.fr/article.php?IdArticle=7092860 False Guideline None None Malwarebytes Labs - MalwarebytesLabs A first look at the builder for LockBit 3.0 Black Categories: NewsCategories: RansomwareTags: LockBit Tags: builder Tags: leaked The LockBit gang's latest ransomware builder has been leaked, and we have a copy (Read more...) ]]> 2022-09-23T09:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/lockbit-builder-leaked-by-disgruntled-developer www.secnews.physaphae.fr/article.php?IdArticle=7092861 False Ransomware None None Malwarebytes Labs - MalwarebytesLabs Medtronic\'s MiniMed 600 series insulin pumps potentially at risk of compromise, says FDA Categories: Exploits and vulnerabilitiesCategories: NewsMedtronic, an insulin pump company, notified its users of a potential risk of attack due to a flaw in its pump's communication protocol. (Read more...) ]]> 2022-09-22T13:15:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/medtronics-minimed-600-series-insulin-pumps-potentially-at-risk-of-compromise-says-fda www.secnews.physaphae.fr/article.php?IdArticle=7070490 False None None None Malwarebytes Labs - MalwarebytesLabs Welcome to high tech hacking in 2022: Annoying users until they say "yes" Categories: NewsTags: MFA fatigue Tags: 2FA Tags: push notification Tags: security Tags: phishing Tags: attack Tags: burnout Tags: stress Tags: verify Cybercriminals' new tactic of simply boring victims into submission has had some surprising succcess. (Read more...) ]]> 2022-09-22T12:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/taking-up-the-slack-on-fatigue-attacks www.secnews.physaphae.fr/article.php?IdArticle=7092864 False None None None Malwarebytes Labs - MalwarebytesLabs Update Firefox and Thunderbird now! Mozilla patches several high risk vulnerabilities Categories: Exploits and vulnerabilitiesCategories: NewsTags: CVE-2022-40959 Tags: CVE-2022-40960 Tags: CVE-2022-40962 Tags: CVE-2022-3033 Tags: Mozilla Tags: Firefox Tags: Thunderbird Mozilla has released security updates to address vulnerabilities in Firefox, Firefox ESR, and Thunderbird which could be exploited to take control of a system. (Read more...) ]]> 2022-09-22T12:00:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/update-firefox-and-thunderbird-now-mozilla-patches-several-high-risk-vulnerabilities www.secnews.physaphae.fr/article.php?IdArticle=7070491 False None None None Malwarebytes Labs - MalwarebytesLabs Morgan Stanley\'s years-long "extensive failure" to protect customer data ends in huge fine Categories: NewsCategories: PrivacyThe SEC has unearthed a long list of whoopsies by Morgan Stanley, all involving the mishandling of sensitive data when disposing of devices. (Read more...) ]]> 2022-09-22T11:45:00+00:00 https://www.malwarebytes.com/blog/news/2022/09/morgan-stanleys-years-long-extensive-failure-to-protect-customer-data-ends-in-huge-fine www.secnews.physaphae.fr/article.php?IdArticle=7070492 False None None None