Categories: Android Categories: Apple Categories: Exploits and vulnerabilities Tags: Pegasus Tags: spyware Tags: nso Tags: webp Tags: libwebp Tags: buffer overflow The company behind the infamous Pegasus spyware used a vulnerability in almost every browser to plant their malware on victim’s devices. |
The post Pegasus spyware and how it exploited a WebP vulnerability appeared first on Malwarebytes Labs.
Read moreCategories: Exploits and vulnerabilities Categories: News Tags: Google Tags: Chrome Tags: CVE-2023-4863 Tags: WebP Tags: buffer overflow Tags: 116.0.5845.187/.188 Chrome users are being urged to patch a critical vulnerability for which an exploit is available. |
The post Update Chrome now! Google patches critical vulnerability being exploited in the wild appeared first on Malwarebytes Labs.
Read moreCategories: Exploits and vulnerabilities Categories: News Tags: Blastpass Tags: citizenlab Tags: pegasus Tags: nso Tags: cisa Tags: apple Tags: cve-2023-41064 Tags: cve-2023-41061 Tags: buffer overflow CISA has added two recently discovered Apple vulnerabilities to its catalog of known exploited vulnerabilities. |
The post Two Apple issues added by CISA to its catalog of known exploited vulnerabilities appeared first on Malwarebytes Labs.
Read moreCategories: News Tags: Windows 11 Tags: OS Tags: operating system Tags: programming language Tags: rust Tags: C Tags: C++ Tags: kernel Tags: buffer overflow We take a look at the slow introduction of programming language Rust into the Windows 11 kernel in an effort to make it more memory safe. |
The post Windows 11 is showing its first signs of Rust appeared first on Malwarebytes Labs.
Read more
Credit to Author: Paul Ducklin| Date: Mon, 05 Dec 2022 17:59:18 +0000
It’s a venerable program, and this version had a venerable bug in it.
Read moreCategories: Explained Categories: News Tags: Fuzzing Tags: fuzz testing Tags: memory leaks Tags: runtime errors Tags: race conditions Tags: control flow error Tags: memory allocation Tags: buffer overflow Fuzzing is an automated software testing method that uses a wide range of invalid and unexpected data as input to find flaws. |
The post Explained: Fuzzing for security appeared first on Malwarebytes Labs.
Read more
Credit to Author: Paul Ducklin| Date: Wed, 31 Aug 2022 11:48:01 +0000
24 existing bugs fixed. And, we hope, numerous potential future bugs prevented.
Read more
Credit to Author: Paul Ducklin| Date: Mon, 09 Dec 2019 21:07:45 +0000
The hard disks that fail abruptly at 32,768 hours of use – why simply ‘adding 1’ can send you into oblivion.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/QXKiLEwjhLM” height=”1″ width=”1″ alt=””/>
Read more
Credit to Author: Lisa Vaas| Date: Wed, 20 Nov 2019 12:33:18 +0000
A now-patched-hole could have allowed remote code execution that could have exposed files and messages. Update your WhatsApp now.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/jIBF0sl6Kuo” height=”1″ width=”1″ alt=””/>
Read more
Credit to Author: John E Dunn| Date: Tue, 10 Sep 2019 10:06:43 +0000
A ‘critical’ security vulnerability has been discovered in the Exim mail server that requires admins’ urgent attention.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/2NLa6N1e3Bk” height=”1″ width=”1″ alt=””/>
Read more