We research. You level up.
Protect your devices, your data, and your privacy—at home or on the go.
"Thanks to the Malwarebytes MSP program, we have this high-quality product in our stack. It’s a great addition, and I have confidence that customers’ systems are protected."
Featured Event: RSA 2021
Activate Malwarebytes Privacy on Windows device.
Save 25% today on your first year of EP or EDR - See offer
Exploits and vulnerabilities
CronRAT targets Linux servers with e-commerce attacks
November 29, 2021 - We look at a stealthy RAT attack focusing on e-commerce Linux servers called CronRAT which does some inventive things with dates.
Read more
Windows Installer vulnerability becomes actively exploited zero-day
November 24, 2021 - A variant of an already patched vulnerability was disclosed by a researcher frustrated by Microsoft's rewards.
Patch now! FatPipe VPN zero-day actively exploited
November 18, 2021 - The FBI has revealed that APT actors have been abusing a zero-day in FatPipe's MPVPN, WARP, and IPVPN products since May.
Update now! Netgear vulnerability patched
November 18, 2021 - Netgear has patched a vulnerability that allowed network adjacent attackers to remotely run code as root on the affected device.
[updated] Patch now! Microsoft plugs actively exploited zero-days and other updates
November 10, 2021 - Another Patch Tuesday has come around, and while it may seem as a calm one for a change, there is enough to patch and update.
Update now! Mozilla fixes security vulnerabilities in Firefox 94
November 3, 2021 - Mozilla has issued patches for several vulnerabilities in the Firefox browser. We discuss some of the high impact issues.
Trojan Source: Hiding malicious code in plain sight
November 3, 2021 - Researchers have revealed a cunning new class of attacks that allow threat actors to use to camouflage malicious code using homoglyphs and bidi control characters.
Google patches zero-day vulnerability, and others, in Android
November 2, 2021 - Google has patched 39 vulnerabilities, some of which are rated as critical and one that may be under limited, targeted exploitation.
Update your OptinMonster WordPress plugin immediately
October 29, 2021 - We look at a recent WordPress plugin compromise, explain what it is, and also what you have to do to ensure your blog and visitors are safe.
Contributors
Threat Center
Podcast
Glossary
Scams
Write for Labs
Select your language
Cybersecurity basics
Your intro to everything relating to cyberthreats, and how to stop them.
![[updated] Patch now! Microsoft plugs actively exploited zero-days and other updates - Another Patch Tuesday has come around, and while it may seem as a calm one for a change, there is enough to patch and update.](https://blog.malwarebytes.com/wp-content/uploads/2021/06/different_patches-604x270.png)
