An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim
Security researchers detected a new mass malware campaign associated with the previously known Manuscrpypt loader, which is part of Lazarus APT group arsenal. The discovery comes from Kaspersky’s Secure List. “Curiously, the data exfiltration channel of the malware uses an…
Phorpiex is a well-known malware that has been operating at least since 2016, initially known as a botnet using the IRC protocol. A couple of years later, the botnet’s infrastructure changed to Tldr – a loader controlled via HTTP. The…
Meta, formerly Facebook, is adding scraping attacks to its bug bounty program, according to a statement the company made. Scraping is an issue that Facebook has been struggling with in the past. Because of this, two areas of research for…
DarkWatchman is the name of a new JavaScript-based remote access trojan (RAT). Currently, the RAT is being distributed in the wild via malicious emails. The malware uses the domain generation algorithm (DGA) technique to identify its Command and Control (C2)…
What Is Khonsari? Khonsari is a new ransomware family recently detected in the wild. The ransomware is using the the critical Apache Log4j vulnerability, also known as CVE-2021-44228, Log4Shell and Logjam, in its attacks against Windows servers. The ransomware uses…
Khonsari is a novel ransomware family currently attempting to exploit the critical Apache Log4j vulnerability, also known as CVE-2021-44228, Log4Shell and Logjam. Apache Log4j Vulnerability: CVE-2021-44228 According to the National Vulnerability Database, “Apache Log4j2
What Is SHGV Virus? Shgv is a cryptovirus created to infect computer systems and personal files. Its access to an operating system enables it to corrupt essential Windows settings. Then it reaches a phase when it runs a data encryption…
What Is Vtwitalpha? Vtwitalpha is a browser hijacker and a suspicious browser extension that reportedly affects the Google Chrome web browser. Users have been complaining that the extension re-appears even after its removal, meaning that it is persistent. The display…
What Is News-jihexa.cc? News-jihexa.cc is a suspicious domain known to cause browser redirects and generate intrusive push notifications and pop-up ads. If your searches are redirected to News-jihexa.cc, then keep in mind that you may have adware installed on your…
Censorship has reached another level in Russia with the country’s decision to fully ban access to the Tor network. In addition to Tor, six other virtual network providers (VPNs) were banned in an attempt to control the internet and prevent…
What Is TaskBoard? TaskBoard is an adware type of program, also classified as potentially unwanted application PUA). If you have in installed on your Mac, you may be experiencing various issues – bad browser and system performance, redirects and ads.…
A cryptocurrency support scam bot that was discovered in May has now evolved. As a result, more cryptocurrency users are targeted. How Does the Cryptocurrency Support Scam Bot Operate? How does the scam operate? Scammers closely monitor all tweets that…
A new ransomware-as-a-service player has been detected by Recorded Future and MalwareHunterTeam on two underground forums. Known as ALPVH and BlackCat, the ransomware group is the first to use Rust, The Record reported. This is the third ransomware strain to…
What is the current state of identify fraud, and where is this cybercrime trend headed in 2022? The state of identity fraud According to a new report by Onfido, identity fraud has increased with 44% since 2019. Since more businesses…
Glupteba is a well-known cryptocurrency mining trojan operating that has been active for a few years. The mining operation has now been disrupted, thanks to a coordinated effort by Google and Cloudflare. According to Google’s announcement, the company “has taken…
A new malvertising campaign has been detected in the wild. The campaign’s purpose is tricking potential victims into executing fake software installers of popular programs, and eventually download an infostealer, a backdoor and a malicious Chrome extension. The discovery comes…
What Is Spotcontent.ru? Is your browser suddenly being redirected to Spotcontent.ru? Spotcontent.ru is categorized as a suspicious website that may flood you with pop-up advertisements, push notifications and various redirects. The page could show up in your browser after you…
What Is Paymentsweb.org Is your website being redirected to Paymentsweb.org? This is yet another example of a browser redirect issue that could trigger pop-ups and push notifications. The website could also display fake CAPCHA in its attempt to try to…
“Avira – Your PC may have been infected” Scam Avira – Your PC may have been infected is a tech-support scam circling the web. The scam is associated with suspicious websites. If you land on one of these associated pages,…
A new data stealing malware has been detected just in time for Christmas and all the related online shopping. It seems that the trend of data stealers directly compromising servers is continuing. CronRAT is another such server-side malware, which was…
