Summary

Total Articles Found: 13

Top sources:

Top Keywords:

Top Authors

Top Articles:

  • Update now! Critical patches for Chrome and Edge
  • A Chrome fix for an in-the-wild exploit is out—Check your version
  • Hat trick for Google as it patches two more zero-days in Chrome
  • Update Firefox and Thunderbird now! Mozilla patches several high risk vulnerabilities
  • Zero-day puts a dent in Chrome's mojo
  • Critical WhatsApp vulnerabilities patched: Check you've updated!
  • Fake Proof-of-Concepts used to lure security professionals
  • 4 over-hyped security vulnerabilities of 2022
  • BrakTooth Bluetooth vulnerabilities, crash all the devices!
  • Falsifying and weaponizing certified PDFs

4 over-hyped security vulnerabilities of 2022

Categories: Exploits and vulnerabilities Categories: News Tags: wormable Tags: zero-day Tags: spring4shell Tags: cve-2022-34718 Tags: log4j Tags: openssl Tags: cve-2022-36934 Tags: cve-2022-27492 Tags: cve-2022-22965 Tags: cve-2022-22963 What does it take to make the discussion of vulnerabilities useful? And where did this go wrong in 2022? (Read more...) The post 4 over-hyped security vulnerabilities of 2022 appeared first on Malwarebytes Labs.

...more

Fake Proof-of-Concepts used to lure security professionals

Published: 2022-10-27 16:45:00

Popularity: 11

Author: None

Keywords:

  • Exploits and vulnerabilities
  • News
  • PoC
  • PoCs
  • Leiden
  • GitHub
  • VirusTotal
  • AbuseIPDB
  • 🤖: "Bait and switch"

    Categories: Exploits and vulnerabilities Categories: News Tags: PoC Tags: PoCs Tags: Leiden Tags: GitHub Tags: VirusTotal Tags: AbuseIPDB Researchers from Leiden University analyzed many thousands of Proof-of-Concepts and found that 10 percent of those they found on GitHub are malicious (Read more...) The post Fake Proof-of-Concepts used to lure security professionals appeared first on Malwarebytes Labs.

    ...more

    A Chrome fix for an in-the-wild exploit is out—Check your version

    Published: 2022-10-28 21:45:00

    Popularity: 36

    Author: None

    Keywords:

  • Exploits and vulnerabilities
  • News
  • Categories: Exploits and vulnerabilities Categories: News Google has issued an update for Chrome to fix an issue in the V8 JavaScript engine (Read more...) The post A Chrome fix for an in-the-wild exploit is out—Check your version appeared first on Malwarebytes Labs.

    ...more

    Critical WhatsApp vulnerabilities patched: Check you've updated!

    Published: 2022-09-26 10:00:00

    Popularity: 22

    Author: None

    Keywords:

  • Exploits and vulnerabilities
  • News
  • WhatsApp
  • CVE-2022-36934
  • CVE-2022-27492
  • 🤖: ""Warning: Update Now!""

    Categories: Exploits and vulnerabilities Categories: News Tags: WhatsApp Tags: CVE-2022-36934 Tags: CVE-2022-27492 Two RCE vulnerabilities were patched in WhatsApp. Both vulnerabilities were video related and could be used to compromise your device. (Read more...) The post Critical WhatsApp vulnerabilities patched: Check you've updated! appeared first on Malwarebytes Labs.

    ...more

    Update Firefox and Thunderbird now! Mozilla patches several high risk vulnerabilities

    Published: 2022-09-22 12:00:00

    Popularity: 32

    Author: None

    Keywords:

  • Exploits and vulnerabilities
  • News
  • CVE-2022-40959
  • CVE-2022-40960
  • CVE-2022-40962
  • CVE-2022-3033
  • Mozilla
  • Firefox
  • Thunderbird
  • Categories: Exploits and vulnerabilities Categories: News Tags: CVE-2022-40959 Tags: CVE-2022-40960 Tags: CVE-2022-40962 Tags: CVE-2022-3033 Tags: Mozilla Tags: Firefox Tags: Thunderbird Mozilla has released security updates to address vulnerabilities in Firefox, Firefox ESR, and Thunderbird which could be exploited to take control of a system. (Read more...) The post Update Firefox and Thunderbird now! Mozilla patches several high risk vulnerabilities appeared first on Malwarebytes Labs.

    ...more

    Zero-day puts a dent in Chrome's mojo

    Published: 2022-09-05 16:30:00

    Popularity: 29

    Author: None

    Keywords:

  • Exploits and vulnerabilities
  • News
  • Categories: Exploits and vulnerabilities Categories: News The Google Chrome Team recently issued a fix for the CVE-2022-3075 zero-day. (Read more...) The post Zero-day puts a dent in Chrome's mojo appeared first on Malwarebytes Labs.

    ...more

    Update now! GitLab issues critical security release for RCE vulnerability

    Published: 2022-08-25 10:00:00

    Popularity: 4

    Author: None

    Keywords:

  • Exploits and vulnerabilities
  • News
  • GitLab
  • RCE
  • CVE-2022-2884
  • GitHub
  • import
  • 🤖: "Git it done"

    Categories: Exploits and vulnerabilities Categories: News Tags: GitLab Tags: RCE Tags: CVE-2022-2884 Tags: GitHub Tags: import GitLab has released important security fixes to patch for an RCE vulnerability, known as CVE-2022-2884. (Read more...) The post Update now! GitLab issues critical security release for RCE vulnerability appeared first on Malwarebytes Labs.

    ...more

    Update now! Critical patches for Chrome and Edge

    Published: 2022-04-30 13:44:04

    Popularity: 615

    Author: Pieter Arntz

    Keywords:

  • Exploits and vulnerabilities
  • cjhromium
  • edge chrome
  • use after free
  • Google has released an update for the Chrome browser that includes 30 security fixes. Edge and other Chromium-based browsers also need updating. The post Update now! Critical patches for Chrome and Edge appeared first on Malwarebytes Labs.

    ...more

    SonicWall warns users to patch critical vulnerability “as soon as possible”

    Published: 2021-09-24 11:09:10

    Popularity: 2

    Author: Pieter Arntz

    Keywords:

  • Exploits and vulnerabilities
  • cve-2021-20034
  • sma-100
  • snwlid-2021-0021
  • sonicwall
  • SonicWall is asking SMA 100 series customers to patch their appliances against a vulnerability that could give attackers administrator access. Categories: Exploits and vulnerabilities Tags: cve-2021-20034sma-100snwlid-2021-0021sonicwall (Read more...) The post SonicWall warns users to patch critical vulnerability “as soon as possible” appeared first on Malwarebytes Labs.

    ...more

    BrakTooth Bluetooth vulnerabilities, crash all the devices!

    Published: 2021-09-02 16:24:34

    Popularity: 10

    Author: Pieter Arntz

    Keywords:

  • Exploits and vulnerabilities
  • BLE
  • bluetooth
  • braktooth
  • cve-2021-28139
  • espressif
  • link manager
  • lmp
  • SOC
  • sweynttoth
  • Researchers have disclosed a set of 16 Bluetooth vulnerabilities that potentially affect billions of devices. Categories: Exploits and vulnerabilities Tags: BLEbluetoothbraktoothcve-2021-28139espressiflink managerlmpSOCsweynttoth (Read more...) The post BrakTooth Bluetooth vulnerabilities, crash all the devices! appeared first on Malwarebytes Labs.

    ...more

    PrintNightmare and RDP RCE among major issues tackled by Patch Tuesday

    Published: 2021-08-11 12:16:17

    Popularity: 3

    Author: Pieter Arntz

    Keywords:

  • Exploits and vulnerabilities
  • August 2021 Patch Tuesday has fewer bugs that we've gotten used to, but it includes some potential biggies. Categories: Exploits and vulnerabilities (Read more...) The post PrintNightmare and RDP RCE among major issues tackled by Patch Tuesday appeared first on Malwarebytes Labs.

    ...more

    Falsifying and weaponizing certified PDFs

    Published: 2021-05-27 16:55:30

    Popularity: 9

    Author: Pieter Arntz

    Keywords:

  • Exploits and vulnerabilities
  • bochum
  • certified pdf
  • digital signatures
  • eaa
  • JavaScript
  • PDF
  • SSA
  • Certified PDFs are supposed to control modifications so that recipients know they haven't been tampered with. It doesn't always work. Categories: Exploits and vulnerabilities Tags: bochumcertified pdfdigital signatureseaaJavaScriptPDFSSA (Read more...) The post Falsifying and weaponizing certified PDFs appeared first on Malwarebytes Labs.

    ...more

    Hat trick for Google as it patches two more zero-days in Chrome

    Published: 2020-11-12 21:16:34

    Popularity: 33

    Author: Pieter Arntz

    Keywords:

  • Exploits and vulnerabilities
  • chrome
  • cve-2020-16013
  • cve-2020-16017
  • Google
  • patches
  • site-isolation
  • Google has patched two more zero-day vulnerabilities that were actively being exploited in the wild. Update now! Categories: Exploits and vulnerabilities Tags: chromecve-2020-16013cve-2020-16017Googlepatchessite-isolation (Read more...) The post Hat trick for Google as it patches two more zero-days in Chrome appeared first on Malwarebytes Labs.

    ...more

    end