An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim
There’s an issue with the popular open-source CAPTCHA software developed by MyBB. The platform is warning its users that the latest version of its software includes a CAPTCHA-breaking bug that could affect forum functionality. MyBB CAPTCHA Bug Explained MyBB is…
Adware.MacOS.ElementarySearchSignal is a detection of an adware and a potentally unwanted application (PUA) targeting macOS users. Shortly known as ElementarySearchSignal, the application may trigger the appearance of ads and the generation of push notifications in the affected browser. Is ElementarySearchSignal…
Security researchers just reported three security vulnerabilities (CVE-2021-31986, CVE-2021-31987, CVE-2021-31988) in Axis video products, that could be exploited in various attacks against businesses. The flaws are located in Axis IP video surveillance systems and could allow arbitrary code execution. CVE-2021-31986,…
SyncExplorer Mac Adware SyncExplorer, also known as Adware.MacOS.SyncExplorer, is an adware/potentially unwanted type of program designed for macOS systems. If you have SyncExplorer installed on your Mac, you may be seeing unwanted ad-related content, and your browser may be going…
Apache just patched two security vulnerabilities (CVE-2021-41773 and CVE-2021-33193) in Apache HTTP Server 2.4.49, one of which important and the other one moderate. CVE-2021-41773 CVE-2021-41773 is a path traversal and file disclosure vulnerability in Apache HTTP Server 2.4.49. There are…
Syniverse, a global company that provides technology and business services for a number of telecommunications companies, such as AT&T, T-Mobile, Verizon, Vodafone, and China Mobile, has been hacked. According to a “quiet disclosure” the company made, hackers have been inside…
Captchareverse.com Ads and Notifications Captchareverse.com is a suspicious website designed to display push notification prompts to the user. In other words, if you come across this website while browsing, you may be invited to subscribe to its push notifications. Keep…
What Is Reverse Captcha Virus Reverse Captcha is a suspicious page triggering unwanted pop-ups and notifications in the browser. These notifications invite the user to subscribe, and doing so may cause downloads of potentially unwanted apps and browser extensions. Users…
Are you having trouble reaching Facebook, WhatsApp and Instagram? Don’t be shocked – even the most popular services suffer outages, and these three are no exclusion. Facebook, WhatsApp, Instagram Down All three platforms stopped working a few hours ago. According…
Windows 11 official launch is due tomorrow, October 5. Windows 10 users with eligible devices are presented with the option of a free upgrade. You can also buy a new computer with a pre-loaded Windows 11 operating system. But is…
Nicyaboyenan.com Pop-Up Scam Nicyaboyenan.com is a suspicious website that triggers scareware notifications and pop-ups to trick users into believing they have viruses on their devices. The end goal of such pages usually is to make the potential victim install a…
The notorious Conti ransomware has been updated with an intriguing capability – destroying the victim’s backups. Conti ransomware hunts for Veeam privileged users and services According to a detailed report by Vitali Kremez and Yelisey Boguslavskiy of Advanced Intelligence, Conti…
Apple’s personal item-tracker devices, known as AirTag, can be exploited to deliver malware, cause clickjacking, steal user credentials and tokens, due to a zero-day XSS vulnerability. AirTag is an iPhone accessory that provides a private and secure way to easily…
A nefarious Android trojan, called GriftHorse and hidden in an agressive mobile premium services campaign has stolen hundreds of millions of Euros. The discovery comes from Zimperium zLabs researchers who discovered the trojan has been using malicious Android applications to…
CVE-2021-26084 is a vulnerability in Atlassian Confluence deployments across Windows and Linux. The flaw is critical, and has been exploited to deploy web shells causing the execution of cryptocurrency miners on vulnerable systems. CVE-2021-26084: Critical Atlassian Confluence Vulnerability According to…
Kaspersky’s Secure List researchers just released new findings regarding the infamous surveillance toolset known as FinSpy, FinFisher or Wingbird. Related: Flubot Android Spyware Delivered via Fake SMS Messages about Missed Package Delivery Deeper Look into FinSpy’s Capabilities The researchers have…
There’s a new backdoor in the wild attributed to the NOBELIUM threat actor, believed to be behind SUNBURST backdoor, TEARDROP malware, and “related components”. According to Microsoft Threat Intelligence Center (MSTIC), the so-called FoggyWeb is a post-exploitation backdoor. The NOBELIUM…
A new mobile banking Trojan has just surfaced. Called ERMAC, the malware appears to be coined by the BlackRock cybercriminals and is based on the roots of the infamous Cerberus. “If we investigate ERMAC, we can find out that ERMAC…
Google recently released an emergency patch for its Chrome browser that fixes a vulnerability with a known exploit in the wild. CVE-2021-37973 Actively Exploited in the Wild CVE-2021-37973 is a use after free vulnerability in Portals API, which is a…
Apple released updates for three zero-day flaws exploited in the wild. CVE-2021-30869, CVE-2021-30860, CVE-2021-30858 The first actively exploited zero-day flaw, CVE-2021-30869, has been fixed in updates for macOS Catalina and iOS 12. According to the official advisory, “a malicious application…
