Critical vulnerabilities in Google Chrome and Microsoft Defender are being actively exploited by attackers, allowing them to run malicious code on compromised systems. The Chrome bugs can be patched with an immediate update, while the Microsoft Defender flaws are being leveraged in targeted attacks1. Meanwhile, popular online platforms such as TikTok, YouTube, and Roblox are facing scrutiny over child safety concerns, with age gates deemed insufficient to address the issue. In other developments, a fake malware-signing service known as Fox Tempest was dismantled by Microsoft, and the latest Firefox update, version 151, introduces significant privacy enhancements. These recent events highlight the ongoing cat-and-mouse game between security professionals and threat actors, emphasizing the need for practitioners to stay vigilant and proactive in protecting their systems and data. The constant stream of vulnerabilities and exploits underscores the importance of prompt patching and updates to prevent exploitation.
A week in security (May 18 – May 24)
⚠️ Critical Alert
Why This Matters
Last week on Malwarebytes Labs: Update Chrome now: Critical bugs could let attackers run code Microsoft Defender vulnerabilities are being exploited in the wild TikTok, YouTube,.
References
- Malwarebytes Labs. (2026, May 25). A week in security (May 18 – May 24). *Malwarebytes*. https://www.malwarebytes.com/blog/news/2026/05/a-week-in-security-may-18-may-24
Original Source
Malwarebytes Labs
Read original →