dcsimg

Patch now! Exchange servers attacked by Hafnium zero-days

Microsoft has detected multiple zero-day exploits being used to attack on-premises versions of Microsoft Exchange Server in limited and targeted attacks. Microsoft attributes the attacks to a group they have dubbed Hafnium. “HAFNIUM primarily targets entities in the United States across a number of industry sectors, including infectious disease researchers, law firms, higher education … [Read more...]

Talking Emotet’s takedown with Adam Kujawa: Lock and Code S02E01

This week on Lock and Code, we discuss the top security headlines generated right here on Labs and around the Internet. In addition, we talk to Adam Kujawa, security evangelist and director of Malwarebytes Labs, about Emotet, the former public enemy No. 1 in the cybercrime world. What began in 2014 as a simple banking Trojan evolved into one of the most sophisticated malware types in the … [Read more...]

February 2021 Patch Tuesday Roundup

After a many-months hiatus, we’re back with the monthly summary of security updates released by Microsoft for its array of consumer and enterprise products. The world has changed since my last post on this topic almost a year ago, but if anything, computers and the Internet have become even more important parts of our lives. […] The post February 2021 Patch Tuesday Roundup first appeared on … [Read more...]

A week in security (December 14 – December 20)

Last week on Malwarebytes Labs we kept you updated on the SolarWinds attack, we warned about the special dangers that come with the Christmas season, published a threat profile for the Egregor ransomware, warned how a lead generation scam was targeting potential Malwarebytes MSP partners, and talked about smart toy security. We also posted a follow-up about the many ways you can be scammed on … [Read more...]

A week in security (December 14 – December 20)

Last week on Malwarebytes Labs we kept you updated on the SolarWinds attack, we warned about the special dangers that come with the Christmas season, published a threat profile for the Egregor ransomware, warned how a lead generation scam was targeting potential Malwarebytes MSP partners, and talked about smart toy security. We also posted a follow-up about the many ways you can be scammed on … [Read more...]

Cortana now reads all my email – and I’m fine with it!

In June 2020, I began receiving some strange-looking emails. The sender clearly had access to most, if not all, of my emails, and her name was “Cortana”. I thought my email account had been hacked by someone with a strange sense of humor!  It turns out that I had not been hacked, and that this was a new feature of Microsoft’s Cortana (of Halo fame), now promoted to the role of intelligent … [Read more...]

Just Released! Parallels Desktop 16 for Mac

It’s finally here! We’re so excited to introduce a new version of Parallels® Desktop: Parallels Desktop 16 for Mac.   With Parallels Desktop, you can run Windows, Linux and other popular operating systems on your Mac without rebooting. For 14 years, we’ve been the #1 solution for over 7 million users worldwide.  Learn more about the hottest new features in Parallels … [Read more...]

Parallels and Google Partner to Bring Enterprises Full-Featured Windows Applications to Chrome Enterprise

Parallels and Google have partnered to bring enterprises and cloud workers full-featured Windows applications to Chrome Enterprise this fall. For more information please click here. Parallels and @Google partner to bring Windows apps to Chrome Enterprise —for the first time ever. Coming this fall. Learn more: https://t.co/LC0Mp9A6dQ#chromeenterprise #chromeos pic.twitter.com/1rTiisDv08— … [Read more...]

A zero-day guide for 2020: Recent attacks and advanced preventive techniques

Zero-day vulnerabilities enable threat actors to take advantage of security blindspots. Typically, a zero-day attack involves the identification of zero-day vulnerabilities, creating relevant exploits, identifying vulnerable systems, and planning the attack. The next steps are infiltration and launch.  This article examines three recent zero-day attacks, which targeted Microsoft, Internet … [Read more...]

Facial recognition: tech giants take a step back

Last week, a few major tech companies informed the public that they will not provide facial recognition software to law enforcement. These companies are concerned about the way in which their technology might be used. What happens when software that threatens our privacy falls into the hands of organization which we no longer trust? In general, being aware of tracking software causes a feeling … [Read more...]