We research. You level up.
Protect your devices, your data, and your privacy—at home or on the go.
"Thanks to the Malwarebytes MSP program, we have this high-quality product in our stack. It’s a great addition, and I have confidence that customers’ systems are protected."
Featured Event: RSA 2021
Activate Malwarebytes Privacy on Windows device.
Exploits and vulnerabilities
SonicWall warns users to patch critical vulnerability “as soon as possible”
September 24, 2021 - SonicWall is asking SMA 100 series customers to patch their appliances against a vulnerability that could give attackers administrator access.
Read more
Microsoft Exchange Autodiscover flaw reveals users’ passwords
September 23, 2021 - Researchers were able to harvest hundreds of thousands of credentials thanks to a quirk of the Autodiscover process.
Patch now! Insecure Hikvision security cameras can be taken over remotely
September 22, 2021 - Many Hikvision cameras are vulnerable to a critical, unauthenticated, remote code execution (RCE) vulnerability.
Patch vCenter Server “right now”, VMWare expects CVE-2021-22005 exploitation within minutes of disclosure
September 22, 2021 - CVE-2021-22005 has a CVSS score of 9.8 and should be treated as an "emergency change", according to VMWare.
FBI and CISA warn of APT groups exploiting ADSelfService Plus
September 17, 2021 - APT actors are exploiting a recently-discovered flaw in ManageEngine's self-service password management product.
HP OMEN users, update your driver now!
September 16, 2021 - Security researchers discovered a critical driver flaw in HP’s OMEN line of laptops and desktops. Millions of users are said to be affected.
[updated] Patch now! PrintNightmare over, MSHTML fixed, a new horror appears … OMIGOD
September 15, 2021 - Septermber 2021's Patch Tuesday could be remembered for ending the PrintNightnare, or for the bug that made us go OMIGOD.
Update now! Google Chrome fixes two in-the-wild zero-days
September 14, 2021 - The world's favorite browser has fixed a bunch of security issues, including a pair of bugs that are already being exploited in the wild.
500,000 Fortinet VPN credentials exposed: Turn off, patch, reset passwords
September 9, 2021 - Credentials were harvested from VPNs vulnerable to CVE-2018-13379. Even if they have been patched since, they may still be vulnerable.
Contributors
Threat Center
Glossary
Scams
Write for Labs
Select your language
Cybersecurity basics
Your intro to everything relating to cyberthreats, and how to stop them.
![[updated] Patch now! PrintNightmare over, MSHTML fixed, a new horror appears … OMIGOD - Septermber 2021's Patch Tuesday could be remembered for ending the PrintNightnare, or for the bug that made us go OMIGOD.](https://blog.malwarebytes.com/wp-content/uploads/2021/09/OMIGODlogo-604x270.png)
