Exploits and vulnerabilities – Page 7 – PossibleThreat Articles

Child health data stolen in registry breach

September 26, 2023 0 Comments born, cl0p, Exploits and vulnerabilities, identity theft, moveit, news, nsc, Privacy, Ransomware, vulnerability

Categories: Exploits and vulnerabilities

Categories: News

Categories: Ransomware

Tags: MOVEit

Tags: vulnerability

Tags: Cl0p

Tags: ransomware

Tags: BORN

Tags: NSC

Tags: privacy

Tags: identity theft

Canadian healthcare organization Better Outcomes Registry & Network (BORN) has disclosed a data breach affecting client data.

(Read more…)

The post Child health data stolen in registry breach appeared first on Malwarebytes Labs.

MalwareBytes Security

Emergency update! Apple patches three zero-days

September 22, 2023 0 Comments Apple, cve-2023-41991, cve-2023-41992, cve-2023-41993, emergency, Exploits and vulnerabilities, news, update

Categories: Exploits and vulnerabilities

Categories: News

Tags: Apple

Tags: emergency

Tags: update

Tags: CVE-2023-41991

Tags: CVE-2023-41992

Tags: CVE-2023-41993

Apple has released patches for three zero-day vulnerabilities that may have been actively exploited.

(Read more…)

The post Emergency update! Apple patches three zero-days appeared first on Malwarebytes Labs.

MalwareBytes Security

The mystery of the CVEs that are not vulnerabilities

September 19, 2023 0 Comments Business, CVE, cve-2020-19909, Exploits and vulnerabilities, news, nvd, Vulnerabilities

Categories: Business

Categories: Exploits and vulnerabilities

Categories: News

Tags: CVE

Tags: NVD

Tags: vulnerabilities

Tags: CVE-2020-19909

Researchers have raised the alarm about a large set of CVE for older bugs that never were vulnerabilities.

MalwareBytes Security

ThemeBleed exploit is another reason to patch Windows quickly

September 18, 2023 0 Comments cve-2023-38146, Exploits and vulnerabilities, Microsoft, msstyles, news, theme, themepack

Categories: Exploits and vulnerabilities

Categories: News

Tags: theme

Tags: themepack

Tags: Microsoft

Tags: cve-2023-38146

Tags: msstyles

An exploit has been released for a vulnerability in .themes that was patched in the September 2023 Patch Tuesday update.

MalwareBytes Security

Patch now! September Microsoft Patch Tuesday includes two actively exploited zero-days

September 13, 2023 0 Comments Adobe, Android, Apple, Azure, Business, chrome, cve-2023-29332, cve-2023-36761, cve-2023-36802, exchange, Exploits and vulnerabilities, Microsoft, news, sap, visual studio

Categories: Business

Categories: Exploits and vulnerabilities

Categories: News

Tags: Microsoft

Tags: Adobe

Tags: Android

Tags: Apple

Tags: Chrome

Tags: SAP

Tags: Exchange

Tags: Visual Studio

Tags: CVE-2023-36761

Tags: CVE-2023-36802

Tags: CVE-2023-29332

Tags: Azure

Microsoft’s September 2023 Patch Tuesday is another important one. It patches two vulnerabilities which are known to be actively exploited.

MalwareBytes Security

Update Chrome now! Google patches critical vulnerability being exploited in the wild

September 12, 2023 0 Comments 116.0.5845.187/.188, buffer overflow, chrome, cve-2023-4863, Exploits and vulnerabilities, Google, news, webp

Categories: Exploits and vulnerabilities

Categories: News

Tags: Google

Tags: Chrome

Tags: CVE-2023-4863

Tags: WebP

Tags: buffer overflow

Tags: 116.0.5845.187/.188

Chrome users are being urged to patch a critical vulnerability for which an exploit is available.

MalwareBytes Security

Two Apple issues added by CISA to its catalog of known exploited vulnerabilities

September 12, 2023 0 Comments Apple, blastpass, buffer overflow, cisa, CitizenLab, cve-2023-41061, cve-2023-41064, Exploits and vulnerabilities, news, nso, pegasus

Categories: Exploits and vulnerabilities

Categories: News

Tags: Blastpass

Tags: citizenlab

Tags: pegasus

Tags: nso

Tags: cisa

Tags: apple

Tags: cve-2023-41064

Tags: cve-2023-41061

Tags: buffer overflow

CISA has added two recently discovered Apple vulnerabilities to its catalog of known exploited vulnerabilities.

MalwareBytes Security

FBI confirms Barracuda patch is not effective for exploited ESG appliances

August 29, 2023 0 Comments barracuda esg, cve-2023-2868, Exploits and vulnerabilities, news, seaspy, submarine, whirlpool

Categories: Exploits and vulnerabilities

Categories: News

Tags: Barracuda ESG

Tags: CVE-2023-2868

Tags: SEASPY

Tags: SUBMARINE

Tags: WHIRLPOOL

The FBI repeats the warning by Barracuda that all ESG appliances should immediately be replaced because the patch was ineffective.

MalwareBytes Security

Update now! Google Chrome’s first weekly update has arrived

August 25, 2023 0 Comments cve-2023-4427, cve-2023-4428, cve-2023-4429, cve-2023-4430, cve-2023-4431, Exploits and vulnerabilities, heap corruption, out-of-bounds, stable channel, use-after-free, weekly updates

Categories: Exploits and vulnerabilities

Tags: stable channel

Tags: weekly updates

Tags: CVE-2023-4427

Tags: CVE-2023-4428

Tags: CVE-2023-4429

Tags: CVE-2023-4430

Tags: CVE-2023-4431

Tags: use after free

Tags: out of bounds

Tags: heap corruption

The first of Chrome’s now weekly security updates fixes five vulnerabilities.

MalwareBytes Security

[updated] Ivanti Sentry critical vulnerability—don’t play dice, patch

August 25, 2023 0 Comments cve-2023-38035, Exploits and vulnerabilities, ivanti, mics, mobileiron, news, port 8443, sentry

Categories: Exploits and vulnerabilities

Categories: News

Tags: Ivanti

Tags: Sentry

Tags: MobileIron

Tags: CVE-2023-38035

Tags: MICS

Tags: port 8443

There is some uncertainty about whether a vulnerability in Ivanti Sentry is being exploited in the wild, but why take the risk when you can patch?