A week in security (September 12 – 18)

Last week on Malwarebytes Labs:

• The North Face hit by credential stuffing attack
• Facebook engineers aren’t sure where all user data is kept
• 6 patch management best practices for businesses
• The MSP playbook on deciphering tech promises and shaping security culture
• Apple puts the password on life support with passkey
• BackupBuddy WordPress plugin vulnerable to exploitation, update now!
• Update now! Google patches vulnerabilities for Pixel mobile phones
• Important update! iPhones, Macs, and more vulnerable to zero-day bug
• Steam account credentials phished in browser-in-a-browser attack
• How to help your child manage their online reputation
• WPGateway WordPress plugin vulnerability could allow full site takeover
• Update now! Microsoft patches two zero-days
• The privacy concerns of tying SIM cards to real identities
• 5 technologies that help prevent cyberattacks for SMBs
• Malvertising on Microsoft Edge’s News Feed pushes tech support scams
• Cyber threat hunting for SMBs: How MDR can help
• Here are the new security and privacy features of iOS 16
• Explained: Fuzzing for security
• School app Seesaw compromised to send shock NSFW image
• Uber hacked
• 3 ways MDR can drive business growth for MSPs

Stay safe!

https://blog.malwarebytes.com/feed/