Patch now! VMWare escape flaws are so serious even end-of-life software gets a fix
The flaws could allow an attacker with privileged access to a guest VM to access the hypervisor on the host.
Read moresandbox
Popular server-side JavaScript security sandbox “vm2” patches remote execution hole
Credit to Author: Paul Ducklin| Date: Sun, 09 Apr 2023 00:28:42 +0000
The security error was in the error handling system that was supposed to catch potential security errors…
Read moreSamsung adds Message Guard protection against zero-click exploits
Categories: Android Categories: News Tags: Samsung Tags: message guard Tags: sandbox Tags: zero-click exploit Tags: images Tags: attachments Samsung has announced the introduction of Message Guard protection against zero-click exploits for the Samsung Galaxy S23 series. |
The post Samsung adds Message Guard protection against zero-click exploits appeared first on Malwarebytes Labs.
Read moreGoogle delays Chrome third party cookie sunsetting…again
Credit to Author: Christopher Boyd| Date: Fri, 29 Jul 2022 15:49:14 +0000
We take a look at the second delay to Google’s intended sunsetting of third party cookies in Chrome, along with the reason why.
The post Google delays Chrome third party cookie sunsetting…again appeared first on Malwarebytes Labs.
Read moreGmail-linked Facebook accounts vulnerable to attack using a chain of bugs—now fixed
Credit to Author: Pieter Arntz| Date: Tue, 17 May 2022 19:37:25 +0000
A researcher has combined a chain of bugs into an attack method that makes it possible to take over Facebook accounts linked to Gmail.
The post Gmail-linked Facebook accounts vulnerable to attack using a chain of bugs—now fixed appeared first on Malwarebytes Labs.
Read moreFirefox out-of-band update to 100.0.1 – just in time for Pwn2Own?
Credit to Author: Paul Ducklin| Date: Sun, 15 May 2022 21:53:47 +0000
A new point-release of Firefox. Not unusual, but the timing of this one is interesting, with Pwn2Own coming up in a few days.
Read more