All articles tagged with #malwarebytes
Instagram has denied a data breach after many users received password-reset emails; it says an external party could trigger legitimate reset requests without compromising its systems, while Malwarebytes claims a 17.5 million-account hack (a claim some researchers view as possibly old leaked data). Users are advised to change passwords via the official app and enable extra protections.
Apple has released iOS 18.2, urging users to update due to 21 critical security fixes, including vulnerabilities in the iPhone Kernel and WebKit. The update also addresses a Passwords flaw and integrates new Apple Intelligence features. The U.S. Cybersecurity and Infrastructure Agency (CISA) and Malwarebytes have issued warnings, emphasizing the importance of updating to protect against potential exploits. The update is available for iPhone XS and later models, and users are advised to enable automatic updates or manually check for the update.
A malvertising campaign targeting users searching for the popular Notepad++ text editor has been active for several months, evading detection. The campaign utilizes Google Ads to promote fake software websites that distribute malware. The final payload is believed to be Cobalt Strike, which often precedes ransomware attacks. The campaign tricks users with misleading titles in Google Search result advertisements, redirecting them to a decoy site or a malicious website that mimics the real Notepad++ site. Victims who meet certain criteria are served an HTA script, likely enabling the attackers to track their infections. To avoid downloading malware, users are advised to skip promoted results on Google Search and verify the official domain of the software they are looking for.