Home Security
PC Matic
PC Matic VPN
More Products
Support Unlimited
Identity Theft Protection
PC Magnum
Threat Awareness
How PC Matic Protects You
SuperShield Whitelist
Compare PC Matic
Norton
McAfee
Avast
AVG
Business Protection
PC Matic Pro
PC Matic MSP
Solutions
Allowlisting
Script Enforcement
Device Control
Patch Management
Remote Tools
Integrations
Server Security
Learn More
Resellers
Affiliates
Resources
Case Studies
Compare PC Matic Pro
ThreatLocker
Airlock Digital
VMware Carbon Black
AppLocker
For Federal
Partner Programs
Managed Service Providers
Channel Partners
Affiliate Partners
OEM Partners
Resource Center
All Resources
Case Studies
Data Sheets
User Guides
White Papers
Blog Resources
PC Matic Blog
Business Security
Home Security
Cyber News
Scam Alerts
Customer Service
Home Support
Business Support
Learn More
Getting Started
Knowledgebase
Tech Support Scams
Fake Virus Scams
Tools & More
Ransomware Center
Internet Speed Test
PC Matic
About
Careers
Learn More
Industry Recognition
Leadership
Commercials
Stay Up-to-Date
Newsroom
Blog
Events
TechTalk Podcast
Home Customers
My Account
PC Matic App
Add a Device
Renew Subscription
Business Customers
Business Login
Business Support
Search

Free Software Has Major Security Flaws

Malwarebytes Experiences Major Security Flaws

Google’s research team recently uncovered a huge security hole in a free security software program that you have probably heard of, Malwarebytes.  Reasearcher, Travis Ormandy took note of the program getting its virus definition updates over an unencrypted Internet connection.  So what does this mean?  Essentially, hackers can trick the program into ignoring certain malicious files, or could secretly place their code into the program.

Malwarebytes is currently addressing the issue; however they did report it will take three to four weeks to fully resolve the problem.  Until the issue is fully resolved, it is encourage users implement the “self-protection” setting.  With the news of these security flaws, Malwarebytes is creating an internal “bug bounty” program.  This program is designed to help identify security issues, in hopes to address any flaws in a more timely manner.

Sources:

http://www.komando.com/happening-now/346105/this-one-security-program-has-serious-unfixed-bugs

https://community.spiceworks.com/topic/1423558-malwarebytes-publicly-confirms-security-holes-in-its-anti-malware-software

https://blog.malwarebytes.org/news/2016/02/malwarebytes-anti-malware-vulnerability-disclosure/

http://www.maximumpc.com/malwarebytes-scrambles-to-plug-security-holes-pointed-out-by-google-researcher/

 

Stop Responding to Threats.
Prevent Them.

Get Protected

Want to get monthly tips & tricks?

Subscribe to our newsletter to get cybersecurity tips & tricks and stay up to date with the constantly evolving world of cybersecurity.

Related Articles