Last week on Malwarebytes Labs
- Instagram’s memorialize feature abused to memorialize…Instagram’s boss
- Evasive manoeuvres: HTML smuggling explained
- FBI server hijacked to send up to 100,000 bogus attack mails
- New Mac malware raises more questions about Apple’s security patching
- SharkBot Android banking Trojan cleans users out
- SoNot SoSafe: Android malware disguises itself as secure messaging app
- When renting a hitman online goes horribly wrong
- TrickBot helps Emotet come back from the dead
- Fake ransomware warnings hit WordPress sites: How to stay safe
- Bogus JS libraries become sustained ransomware threat for Roblox gamers
- Update now! Netgear vulnerability patched
- Phishers target TikTok influencers with verification promises and copyright threats
- Patch now! FatPipe VPN zero-day actively exploited
- Malwarebytes CrackMe – contest summary
Other cybersecurity news
- Fears escalate as Iranian APT hackers continue to hammer IT service sectors. (Source: SecurityWeek)
- Malformed Python packages steal Discord tokens. (Source: The Record by Recorded Future)
- Former head of information security at Amazon claims that customer data protection “was all put together with tape and bubblegum”. (Source: Business Insider)
- Yes, ransomware threat actors can try to turn your employees against you. (Source: SC Media)
- Ransomware groups are getting better at changing tactics on the fly. (Source: Decipher by Duo Security)
- Fraudsters are cashing in on interest-free payment plans. (Source: CNBC)
- Online identity theft is on the rise in New Zealand. (Source: Scoop News)
- According to a report, businesses are worries about getting attacked during the holidays. (Source: CBS News)
Stay safe!
The post A week in security (Nov 15 – Nov 21) appeared first on Malwarebytes Labs.
Article Link: A week in security (Nov 15 - Nov 21) - Malwarebytes Labs | Malwarebytes Labs