Twitter has been hit with a minor data breach incident that the social networking site believes linked to a suspected state-sponsored attack.
In a blog post published on Monday, Twitter revealed that while investigating a vulnerability affecting one o…
Security researchers have discovered yet another example of how cybercriminals disguise their malware activities as regular traffic by using legitimate cloud-based services.
Trend Micro researchers have uncovered a new piece of malware that retrieves …
Exel Password Recovery 8.2.0.0 – Local Buffer Overflow Denial of Service
AnyBurn 4.3 – Local Buffer Overflow Denial of Service
MegaPing – Local Buffer Overflow Denial of Service
Nsauditor 3.0.28.0 – Local SEH Buffer Overflow
Microsoft Windows – ‘jscript!JsArrayFunctionHeapSort’ Out-of-Bounds Write
MiniShare 1.4.1 – Remote Buffer Overflow HEAD and POST Method
SDL Web Content Manager 8.5.0 – XML External Entity Injection
 |
|
| The next major Android version will be Android Q and not Android 9.1 Pie. In parallel, Google is also developing a new operating system based on its own microkernel called Fuchsia. Will this be the OS that replaces Android? Read on to find out.
Categories: Tags: AndroidflutterfuchsiaGooglemobile menace mondayoperating systemtriple mZircon |
The post Mobile Menace Monday: Is Fuchsia OS the end of Android? appeared first on Malwarebytes Labs.
 |
|
| A roundup of last week’s security news from December 10–16, including facial recognition technology, abandoned USB sticks, even more trouble at Facebook, Google bugs, and more.
Categories: Tags: AndroidBitcoin bomb threatbugfacebookmac malwarepasswordsSMB vulnerabilitiesUSB stickswindows 10 |
The post A week in security (December 10 – 16) appeared first on Malwarebytes Labs.
Type: White PapersKnowing, detecting, disrupting and eradicating the advanced threatCategory:Incident Response and ManagementIntelligenceThis paper describes the high-level framework that cyberthreat actors employ in their efforts to compromise a target.
Cybersecurity researchers have discovered a critical vulnerability in widely used SQLite database software that exposes billions of deployments to hackers.
Dubbed as ‘Magellan’ by Tencent’s Blade security team, the newly discovered SQLite flaw could a…
Facebook’s latest screw-up — a programming bug in Facebook website accidentally gave 1,500 third-party apps access to the unposted Facebook photos of as many as 6.8 million users.
Facebook today quietly announced that it discovered a new API bug in it…
Shamoon is back… one of the most destructive malware families that caused damage to Saudi Arabia’s largest oil producer in 2012 and this time it has targeted energy sector organizations primarily operating in the Middle East.
Earlier this week, Italia…
 |
|
| SMB vulnerabilities have been so successful for criminals that they’ve been used in some of the most devastating ransomware and Trojan attacks of the last two years. Learn how they work and how your organization can protect against them.
Categories: Tags: EternalBlueEternalChampionEternalRomanceexploitsNSA toolsRansom.WannaCryptShadowBrokersSMB vulnerabilitiesvulnerabilitiesWannaCryWannaCrypt |
The post How threat actors are using SMB vulnerabilities appeared first on Malwarebytes Labs.
