CISA list of 95 new known exploited vulnerabilities raises questions

Credit to Author: Pieter Arntz| Date: Mon, 14 Mar 2022 11:18:33 +0000

When CISA decided to add 95 known exploited vulnerabilities to its catalog in one day, we decided to do some digging.

The post CISA list of 95 new known exploited vulnerabilities raises questions appeared first on Malwarebytes Labs.

Read more

Patch Tuesday, September 2019 Edition

Credit to Author: BrianKrebs| Date: Tue, 10 Sep 2019 20:09:11 +0000

Microsoft today issued security updates to plug some 80 security holes in various flavors of its Windows operating systems and related software. The software giant assigned a “critical” rating to almost a quarter of those vulnerabilities, meaning they could be used by malware or miscreants to hijack vulnerable systems with little or no interaction on the part of the user.

Read more

JCry – A Ransomware written in Golang!

Credit to Author: Ghanshyam More| Date: Tue, 09 Apr 2019 09:49:34 +0000

For several months, QH Labs has been observing an upswing in ransomware activity. We found a new ransomware which is written in Go lang. Malware authors are finding it easy to write ransomware in Go lang rather than traditional programming languages. Infection of Jcry ransomware starts with a compromised website. As…

Read more

Patch Tuesday, July 2018 Edition

Credit to Author: BrianKrebs| Date: Wed, 11 Jul 2018 02:34:41 +0000

Microsoft and Adobe each issued security updates for their products today. Microsoft’s July patch batch includes 14 updates to fix more than 50 security flaws in Windows and associated software. Separately, Adobe has pushed out an update for its Flash Player browser plugin, as well as a monster patch bundle for Adobe Reader/Acrobat.

Read more

Flash, Windows Users: It’s Time to Patch

Credit to Author: BrianKrebs| Date: Tue, 13 Mar 2018 19:36:28 +0000

Adobe and Microsoft each pushed critical security updates to their products today. Adobe’s got a new version of Flash Player available, and Microsoft released 14 updates covering more than 75 vulnerabilities, two of which were publicly disclosed prior to today’s patch release. The Microsoft updates affect all supported Windows operating systems, as well as all supported versions of Internet Explorer/Edge, Office, Sharepoint and Exchange Server. All of the critical vulnerabilities from Microsoft are in browsers and browser-related technologies, according to a post from security firm Qualys.

Read more

Adobe, Microsoft Plug Critical Security Holes

Credit to Author: BrianKrebs| Date: Wed, 13 Sep 2017 16:42:30 +0000

Adobe and Microsoft both on Tuesday released patches to plug critical security vulnerabilities in their products. Microsoft’s patch bundles fix close to 80 separate security problems in various versions of its Windows operating system and related software, including two vulnerabilities that already are being exploited in active attacks. Adobe’s new version of its Flash Player software fixes two flaws that malware or attackers could use to seize remote control over vulnerable computers with no help from users.

Read more

Snake malware ported from Windows to Mac

Credit to Author: Thomas Reed| Date: Fri, 05 May 2017 14:00:41 +0000

Snake, also known as Turla and Uroburos, is backdoor malware that has been around and infecting Windows systems since at least 2008. It is thought to be Russian governmental malware and on Windows is highly-sophisticated. It was even seen infecting Linux systems in 2014. Now, it appears to have been ported to Mac.



(Read more…)

The post Snake malware ported from Windows to Mac appeared first on Malwarebytes Labs.

Read more