dcsimg
November 23, 2020

Lock and Code S1Ep20: Tracking the charities that track you online with Chris Boyd

This week on Lock and Code, we discuss the top security headlines generated right here on Labs and around the Internet. In addition, we talk to Chris Boyd, lead malware intelligence analyst for Malwarebytes, about charity organizations and online ad tracking. Though many might assume that these two topics have no overlap, they absolutely do. Ad tracking itself isn’t anything new—luxury … [Read more...]

Filed Under: capcom, charities, charity, charity organizations, Chris Krebs, darkside, Facebook Messenger, forecast, funnydream, IoT, Malsmoke, online ad tracking, online advertisement tracking, online advertising, pluton, podcast, real time bidding, RTB, webnavigator, Week in security
November 20, 2020

Black Friday 2020: How to shop safely online

Black Friday 2020 promises to be somewhat different from years gone by thanks to COVID-19. The annual surge of in-store chaos and trolley dashes isn’t compatible with social distancing, and so retailers will be looking to drive shoppers online. Friday 27th November is when things kick off this year, and yet some aspects will be radically different. If you intend to go to physical stores, then … [Read more...]

Filed Under: Black Friday, Hacking, Malware, online, phishing, retail, scams, shopping, social media, stores
November 16, 2020

A week in security (November 9 – November 15)

Last week on Malwarebytes Labs, we reported on multiple patch releases: from Mozilla’s Firefox and Thunderbird to Google’s Chrome. We also had a chat with our resident experts, Adam Kujawa and John Donovan, about the future of IoT cybersecurity in our latest Lock and Code podcast episode. Lastly, we took a look at a new ransomware called RegretLocker, and guided college students on how … [Read more...]

Filed Under: a week in security, amazon, amazon scam, android malware, BBB, Better Business Bureau, Black Friday, Black Friday 2020, Check Point, Check Point Software Technologies, Chrome patch, college cybersecurity, COVID scam, discord, Firefox patch, gaming console scam, Google Play, Google Play Store, Internet of Things, IoT, IoT cybersecurity, Iranian APT, lock & code, lock and code podcast, malicious attachment, Pay2Key, phishing, Playstation 5, regretlocker, scam, text scam, Thunderbird patch, TroubelGrabber
November 9, 2020

Lock and Code S1Ep19: Forecasting IoT cybersecurity with John Donovan and Adam Kujawa

This week on Lock and Code, we offer something special for listeners—a backstage pass to a cybersecurity training that we held for employees during Cybersecurity Awareness Month, which ended in October. The topic? The future of cybersecurity for the Internet of Things. Our guests, Chief Information Security Officer John Donovan and Security Evangelist and a Director for Malwarebytes Labs … [Read more...]

Filed Under: cybersecurity awareness month, elections, Hacking, hospitals, Internet of Things, IoT, IoT devices, IoT security, IoT security concerns, lock and code, Malware, Mobile, national cybersecurity awareness month, podcast, ransomware, trojan, zero day
November 3, 2020

Maze ransomware gang announces retirement

The threat actors behind Maze ransomware have announced their retirement. On November 1, they posted the retirement announcement on the website where they would normally name and shame their victims that were unwilling to pay the ransom. image courtesy of Graham Cluley “The Project is closed.Maze Team Project is announcing it is officially closed.All the links to out project, using of … [Read more...]

Filed Under: egregor, Maze, ransom.sekhmet, ransomware, retirement
November 3, 2020

Hospital ransomware: Gangs are back to target healthcare

Healthcare is not in a good place right now. With some countries and states deciding to go back in to lockdown due to the continued rise of reported COVID-19 infections—and several garnering record-high numbers compared to when almost every country initially went into lockdown—it seems horrible timing that hospital ransomware is back in the news. Early on in the coronavirus crisis, a promise … [Read more...]

Filed Under: BazarBackdoor, BazarLoader, Brian Honan, CISA, conti, fbi, healthcare, HHS, ransomware, Ransomware Response Checklist, ryuk, trickbot, UHS, Uniklinikum, Universal Health Services
November 2, 2020

A week in security (October 26 – November 1)

We had a very busy week at Malwarebytes Labs. We offered advice on Google’s patch for an actively exploited zero-day bug that affects Chrome users, our podcast talked about finding consumer value in Cybersecurity Awareness Month with Jamie Court, we provided guidance about keeping ransomware cash away from your business, pointed out how scammers are spoofing bank phone numbers to rob … [Read more...]

Filed Under: covid-19 survey, CVE-2020-14882, cybersecurity awareness month, disinformation, email compromise, emotet, facebook, Google Chrome, Google patch, hp printer issue, Malwarebytes news, oracle weblogic, ransomware, satellite hacking, spoofing, suncrypt, vastaamo, wandera, zero day, zerologon, zoom
October 26, 2020

Lock and Code S1Ep18: Finding consumer value in Cybersecurity Awareness Month with Jamie Court

This week on Lock and Code, we discuss the top security headlines generated right here on Labs and around the Internet. In addition, we talk to Jamie Court, president of the non-profit advocacy group Consumer Watchdog, about the consumer value in Cybersecurity Awareness Month. Launched initially as a joint effort between government and industry, this once-a-year awareness campaign is meant to … [Read more...]

Filed Under: brute force attacks, consumer cybersecurity, consumer privacy, consumer security, Consumer Watchdog, covid-19, cross-site scripting, CrowdStrike, cybersecurity awareness, cybersecurity integration, data breach, deepfake, general elections 2020, managed service providers, MSP, nation-state actors, national cybersecurity awareness month, NCSAM, NSA, Pfizer, podcast, Sensity, tech support scams, telegram, TSS, US elections 2020, xss
October 26, 2020

Google patches actively exploited zero-day bug that affects Chrome users

Google has recently released Chrome version 86.0.4240.111 to patch several holes. One is for a zero-day flaw – that means a vulnerability that is being actively exploited in the wild. The flaw, which is officially designated as CVE-2020-15999, occurs in the way FreeType handles PNG images embedded in fonts using the Load_SBit_Png function. FreeType is a popular text rendering library that … [Read more...]

Filed Under: 86.0.4240.111, browser exploit, Chrome vulnerability, CVE-2020-15999, Exploits and vulnerabilities, FreeType, FreeType 2.10.4, FreeType zero-day
October 22, 2020

The value of cybersecurity integration for MSPs

For modern Managed Service Providers (MSPs), gone are the days of disparate workflows, and that’s really for the best. Imagine trying to run a successful MSP business today—finding potential customers, procuring new clients, developing purchase orders, managing endpoints, and sending invoices—all without the help of Remote Monitoring and Management (RMM) and Professional Services Automation … [Read more...]

Filed Under: cybersecurity, cybersecurity integration, Malwarebytes news, managed service provider, managed service providers, MSP, professional services automation, psa, PSA platform, remote monitoring and management, RMM, RMM platform
Next Page »