Google patches critical vulnerability for Androids with Qualcomm chips (www.malwarebytes.com)
AT&T confirms 73 million people affected by data breach | Malwarebytes (www.malwarebytes.com)
Telecommunications giant AT&T has finally confirmed that 73 million current and former customers are caught up in a massive dark web data leak.
AT&T confirms 73 million people affected by data breach | Malwarebytes (www.malwarebytes.com)
cross-posted from: midwest.social/post/10651723...
[Malwarebytes Blog] Android banking trojans: How they steal passwords and drain bank accounts (www.malwarebytes.com)
This article warns users about Android banking trojans, a type of malware that steals online banking credentials and drains accounts....
2 million job seekers targeted by data thieves. Primary focus in APAC region, including Australia, Taiwan, China, Thailand, India, and Vietnam. Also affects Brazil, Italy, Mexico, Russia, Turkey, US. (www.malwarebytes.com)
Summary:...
"How to tell if your toothbrush is being used in a DDoS attack" (www.malwarebytes.com)
This timeline has gone off the rails.
Facebook introduces another way to track you - Link History (www.malwarebytes.com)
Will ChatGPT write ransomware? Yes. (www.malwarebytes.com)
Defeating Little Brother requires a new outlook on privacy (www.malwarebytes.com)
As far back as 2010, in a piece titled “Little Brother is Watching,” author Walter Kirn wrote for the New York Times: “As the internet proves every day, it isn’t some stern and monolithic Big Brother that we have to reckon with as we go about our daily lives, it’s a vast cohort of prankish Little Brothers equipped with...
A threat actor abuses Google Ads to distribute malicious CPU-Z app from fake Windows news site, Malwarebytes reports (www.malwarebytes.com)
The malicious ad is for CPU-Z, a popular utility for Windows users that want to troubleshoot their processor and other computer hardware details. The advertiser shows as Scott Cooper and is likely a compromised or fake identity, the report says.
Clever malvertising attack uses Punycode to look like KeePass's official website (www.malwarebytes.com)
Clever malvertising attack uses Punycode to look like KeePass's official website (www.malwarebytes.com) French
Threat actors are doubling down on brand impersonation by using lookalike domain names.
[News] ThemeBleed exploit is another reason to patch Windows quickly (www.malwarebytes.com)
Summary...
Watch out, this LastPass email with "Important information about your account" is a phish (www.malwarebytes.com)
Fake Cisco Webex Google Ads abuse tracking templates to push malware (www.malwarebytes.com)
A new malvertising campaign is targeting corporate users who are downloading the popular web conferencing software Webex. Threat actors have bought an advert that has been online for almost a week and that impersonates Cisco’s brand and is displayed first when performing a Google search. The malware being used in this campaign...
Fake Cisco Webex Google Ads abuse tracking templates to push malware (www.malwarebytes.com)
A new malvertising campaign is targeting corporate users who are downloading the popular web conferencing software Webex. Threat actors have bought an advert that has been online for almost a week and that impersonates Cisco’s brand and is displayed first when performing a Google search. The malware being used in this campaign...
Password-stealing Chrome extension smuggled on to Web Store (www.malwarebytes.com)
cross-posted from !google...
Password-stealing Chrome extension smuggled on to Web Store (www.malwarebytes.com)
cross-posted from !google...
Password-stealing Chrome extension smuggled on to Web Store; Researchers Demonstrated that Password-stealing Extensions are Still Possible with Manifest V3 (www.malwarebytes.com)
Summary...
Password-stealing Chrome extension smuggled on to Web Store (www.malwarebytes.com)
Original source: arxiv.org/pdf/2308.16321.pdf...
[Corp Blog/News] A firsthand perspective on the recent LinkedIn account takeover campaign (www.malwarebytes.com)
TLDR; if your Linkedin account is taken over, the only way that you can get rid of the hacker may be to get support to do it....
[Corp Blog] Google strengthens its Workplace suite protection, apps including Gmail, Calendar, Drive, or Google Docs Editors Suite (among other apps) (www.malwarebytes.com)
Summary...
[News] Attackers demand ransoms for stolen LinkedIn accounts (www.malwarebytes.com)
Summary...
[Corp Blog, Malware Analysis] Catching up with WoofLocker, the most elaborate traffic redirection scheme to tech support scams (www.malwarebytes.com)
Short Summary...