An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim
A new security report indicates that the KingMiner crypto-mining operation is back in the game with new attacks against MSSQL (Microsoft SQL) databases. Owners of such databases should secure their servers, as Sophos researchers detected brute-force attacks attempting to guess…
A severe vulnerability, known under the CVE-2020-12695, has been discovered in a core protocol in nearly all IoT devices – the Universal Plug and Play (UPnP) protocol. The flaw, dubbed CallStranger could allow attackers to take over IoT devices in…
Have you updated your Firefox browser? Mozilla just released security updates addressing eight vulnerabilities, five of which rated as high-risk. To be protected against the attacks, users should be running Firefox 77. If you haven’t restarted your Firefox browser in…
A new vulnerability in LG smartphones, CVE-2020-12753, was recently discovering, affecting models from the past seven years. A security update has been issued that addresses the vulnerability which impacts the bootloader component in LG smartphones. This component is separate from…
Google is the subject of a class action, and the accusations are regarding the invasion of the privacy of millions of users. The complaint, filed to the District Court of Northern California claims that Google is tracking users’ browsing and…
A warning was issued recently regarding phone calls from the so-called contact tracers. The phone calls supposedly alert people about having been in close proximity with potential carriers of COVID-19. In danger are particularly British people, TheRegister reported. Why British…
What is the state of malvertising and drive-by downloads in 2020? A new Confiant report explores “the details behind a recent spree of website hacks” as well as the malicious payloads delivered to victims. The report also includes details on…
The largest free web hosting provider for dark web services has been hacked. Daniel’s Hosting was hacked in March this year, and its database was subsequently leaked online. Apparently, a hacker known as KingNull not only breached the portal and…
In April, security researcher Bhavuk Jain discovered a zero-day vulnerability in Sign in with Apple that affected third-party applications using the feature without implementing their own security measures. According to the researcher, the Apple zero-day “could have resulted in a…
What Is Norton Security Warning Pop-up? ‘Norton Security Warning’ pop-up windows suggesting that the user should call the number 1-855-770-9879 are an indication of adware and PUP infiltration. Users should not trust anything displayed by “Norton Security Warning” since the…
Ransomware continues to be a top cybersecurity threat to both individual users and public and private organizations. Ransomware has proven to be the most insidious and persistent threat plaguing users and enterprises worldwide for money. Now, the latest statistics reveal…
A new highly dangerous, critical vulnerability was identified in the Android operating system. The vulnerability resembles the StrandHogg flaw, revealed last year, but is even more sophisticated. Dubbed StrandHogg 2.0 and also known as CVE-2020-0096, the vulnerability affects all Android…
EasyJet recently revealed that it went through a significant data breach that affected nine million of the company’s customers. The breached data also included more than two thousand credit card details. Following this massive data breach, EasyJet is facing an…
A new iOS jailbreak was recently released by a group of cybersecurity experts and reverse engineers, known as the Unc0ver team. The jailbreak, called UnC0ver 5.0.0, can root and unlock all iOS devices, including the ones running the most recent…
Facebook is facing another penalty over false data privacy claims. According to Canada’s Competition Bureau, Facebook has mishandled user information by creating the false feeling that users could control who could see and access their personal information via privacy features.…
There’s a new high severity, remote code execution (RCE) vulnerability in VMware Cloud Director. Tracked as CVE-2020-3956, the flaw triggers code injection that allows authenticated attackers to send malicious traffic to Cloud Director. This could then lead to arbitrary code…
GhostDNS exploit kit was making the headlines last year, when it was first discovered by Qihoo 360’s NetLab researchers. Back then, the researchers came across a widespread malicious campaign that had hijacked more than 100,000 home routers to modify their…
The latest large-scale data leak involves the personally identifiable information of 192 million data records of customers in Brazil. Natura, one of the country’s largest cosmetics companies, had a leaky database hosted on two unprotected US-based Amazon servers. Natura Cosmetics…
Another day, another discovery of vulnerabilities. A new malicious attack exploiting the way DNS recursive resolvers operate was just discovered. In detail, the attack exploits the way the resolvers work when receiving NS referral response that contains nameservers but without…
A new type of malicious attack was recently disclosed, based on a new security flaw in the Bluetooth wireless protocol. The attack has been called BIAS (Bias Impersonation AttackS) and is given the CVE-2020-10135 identifier, and it affects the classic…
