Exploits and vulnerabilities – Page 21

Firefox, Thunderbird, receive patches for critical security issues

May 28, 2022 0 Comments cve-2022-1529, cve-2022-1802, Exploit, Exploits and vulnerabilities, firefox, thunderbird, vulnerability

Credit to Author: Christopher Boyd| Date: Fri, 27 May 2022 11:06:49 +0000

Critical updates have been released for both Firefox and Thunderbird. Apply now if you haven’t already—we explain how.

The post Firefox, Thunderbird, receive patches for critical security issues appeared first on Malwarebytes Labs.

MalwareBytes Security

Update now! Multiple vulnerabilities patched in Google Chrome

May 28, 2022 0 Comments chrome, critical, cve-2022-1853, Exploits and vulnerabilities, indexeddb

Credit to Author: Pieter Arntz| Date: Wed, 25 May 2022 11:00:05 +0000

Google has issued an update for the Chrome browser to patch 32 security issues . One of the vulnerabilities is rated as critical, so install that update as soon as you can.

The post Update now! Multiple vulnerabilities patched in Google Chrome appeared first on Malwarebytes Labs.

MalwareBytes Security

Update now! Nvidia released fixes for 10 flaws in Windows GPU drivers

May 28, 2022 0 Comments cve-2022-28181, cve-2022-28182, cve-2022-28183, cve-2022-28184, cve-2022-28185, cve-2022-28186, cve-2022-28187, cve-2022-28188, cve-2022-28189, cve-2022-28190, Exploits and vulnerabilities, kernel mode layer, Linux, NVIDIA, out-of-bounds, Windows

Credit to Author: Jovi Umawing| Date: Mon, 23 May 2022 11:15:01 +0000

NVIDIA recently released patches to address multiple flaws in Windows. Four of them were rated high in severity.

The post Update now! Nvidia released fixes for 10 flaws in Windows GPU drivers appeared first on Malwarebytes Labs.

MalwareBytes Security

VMWare vulnerabilities are actively being exploited, CISA warns

May 19, 2022 0 Comments cisa, cve-2022-22954, cve-2022-22960, cve-2022-22972, cve-202222973, ed 22-03, Exploits and vulnerabilities, identity manager, vmware, vrealize, workspace one access

Credit to Author: Pieter Arntz| Date: Thu, 19 May 2022 12:42:13 +0000

CISA has issued severe warnings about disclosed vulnerabilities in VMWare products that are actively being exploited, probably by APT threat actors.

The post VMWare vulnerabilities are actively being exploited, CISA warns appeared first on Malwarebytes Labs.

MalwareBytes Security

Sysrv botnet is out to mine Monero on your Windows and Linux servers

May 18, 2022 0 Comments Botnet, botnets, crypto miner, cve-2022-22947, DDoS, Exploits and vulnerabilities, golang, Linux, monero, multi-platform malware, patch management, spring, sysrv, Vulnerabilities, Wordpress

Credit to Author: Pieter Arntz| Date: Wed, 18 May 2022 12:55:00 +0000

The Sysrv botnet has been developing over the last years, and has become a multi-platform botnet that specializes in Monero cryptomining.

The post Sysrv botnet is out to mine Monero on your Windows and Linux servers appeared first on Malwarebytes Labs.

MalwareBytes Security

Update now! Apple patches zero-day vulnerability affecting Macs, Apple Watch, and Apple TV

May 17, 2022 0 Comments 0 day, apple mac, apple tv, Apple Watch, apple zero-day, appleavd, cve-2022-22675, Exploits and vulnerabilities, zero day, zero-day vulnerability

Credit to Author: Jovi Umawing| Date: Tue, 17 May 2022 20:00:36 +0000

If you’re an Apple user, make sure you patch for CVE-2022-22675, a zero-day flaw actively exported in the wild.

The post Update now! Apple patches zero-day vulnerability affecting Macs, Apple Watch, and Apple TV appeared first on Malwarebytes Labs.

MalwareBytes Security

Gmail-linked Facebook accounts vulnerable to attack using a chain of bugs—now fixed

May 17, 2022 0 Comments captcha, csrf, Exploits and vulnerabilities, facebook, gmail, iframe, linked accounts, myopenid, oauth, sandbox, sop, unlink, XSS, youssef sammouda

Credit to Author: Pieter Arntz| Date: Tue, 17 May 2022 19:37:25 +0000

A researcher has combined a chain of bugs into an attack method that makes it possible to take over Facebook accounts linked to Gmail.

The post Gmail-linked Facebook accounts vulnerable to attack using a chain of bugs—now fixed appeared first on Malwarebytes Labs.

MalwareBytes Security

F5 BIG-IP vulnerability is now being used to disable servers

May 12, 2022 0 Comments cve-2022-1388, Exploits and vulnerabilities, f% big-ip, web shell, wiping

Credit to Author: Pieter Arntz| Date: Thu, 12 May 2022 12:51:25 +0000

At least one group of threat actors is using the recently patched vulnerability in F5 BIG-IP to wipe the file system of vulnerable devices.

The post F5 BIG-IP vulnerability is now being used to disable servers appeared first on Malwarebytes Labs.

MalwareBytes Security

Update now! Microsoft releases patches, including one for actively exploited zero-day

May 11, 2022 0 Comments Adobe, Azure, chrome, Cisco, cve-2022-22713, cve-2022-23270, cve-2022-26925, cve-202221972, cve-202229972, Exploits and vulnerabilities, f5 big ip, Hyper-V, lsa spoofing, odbc, Opera, Patch Tuesday, ptpt, redshift, zero day

Credit to Author: Pieter Arntz| Date: Wed, 11 May 2022 14:36:23 +0000

May’s Patch Tuesday includes one actively exploited zero-day vulnerability and some other interesting ones.

The post Update now! Microsoft releases patches, including one for actively exploited zero-day appeared first on Malwarebytes Labs.

MalwareBytes Security

Update now! F5 BIG-IP vulnerability being actively exploited

May 9, 2022 0 Comments cve-2022-1388, Exploits and vulnerabilities, f5 big ip, icontrol

Credit to Author: Pieter Arntz| Date: Mon, 09 May 2022 15:39:17 +0000

Only a few days after the release of the patch for a vulnerability in F5 BIG-IP, exploits were developed and are now being deployed.

The post Update now! F5 BIG-IP vulnerability being actively exploited appeared first on Malwarebytes Labs.