An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim
Security researchers discovered a new malicious technique that helps malware achieve evasion on an infected system. Called Process Ghosting, the technique could be exploited by a threat actor to bypass security protections and run malicious code on a Windows system.…
Security researchers recently discovered a vulnerability in Linux systemd’s polkit. Identified as CVE-2021-3560, the flaw appears to have been around for at least seven years. Since polkit is used in many Linux distributions, the impact of the vulnerability should not…
What Is Default Upgrade? Default Upgrade (DefaultUpgrade) is an adware application that may have sneaked into your system without your knowledge or consent. It is yet another example of a series of unwanted apps targeting macOS, such as Default Explorer,…
Click.allow.mobi Ads Are you seeing Click.allow.mobi pop-ups and push notifications in your browser? If so, you should be careful not to click anything stemming from the Click.allow.mobi site. Click.allow.mobi is a suspicious domain that tries to tries to trick you…
A new CISA advisory warns about a critical software supply-chain vulnerability affecting ThroughTek’s SDK (software development kit). The flaw, identified as CVE-2021-32934 could be abused to gain improper access to audio and video streams. Other compromise scenarios include spoofing vulnerable…
What Is Smart Blocker Browser Extension? Smart Blocker is a suspicious browser extension that may have “attached” to your browser without your knowledge or consent. Or you may have downloaded it believing it is a useful tool. Advertised as an…
To the attention of Apple users – the company recently released out-of-band-security patches addressing two-zero days in iOS 12.5.3. The vulnerabilities may have been exploited in the wild, so patch your devices immediately. iOS 12.5.4 Fixes Three Bugs: CVE-2021-30737, CVE-2021-30761,…
A large-scale data breach has affected one of Volkswagen’s vendors, exposing personal details of 3.3 million customers. The vendor left one of its systems open for two years, between August 2019 and May 2021. Volkswagen Data Breach: What Happened? “On…
According to a new Google announcement, the search giant is rolling out client-side encryption for its Google Workspace, previously known as G Suite. The new addition synchronizes with Google Workspace and Google Chat’s broader availability to all users with a…
Security researchers are warning that cybercriminals are leveraging an older SQL injection security flaw, known as CVE-2019-7481. The vulnerability is located in SonicWall Secure Remote Access (SRA) 4600 devices that run firmware versions 8.x and 9.x. CVE-2019-7481 Currently Used in…
Hackers recently breached Electronic Arts (EA), a company which is a leading publisher of games. As a result of the hack, FIFA’s source code and other related software and developer kits were stolen. The company is currently investigating the attack.…
Have you patched your Chrome browser? Google just fixed a serious vulnerability in its browser, stemming from a type confusion issue in its V8 open-source engine. Tracked as CVE-2021-30551, the vulnerability was discovered by Sergei Glazunov from Google Project Zero.…
What Is Baxter Virus File? Security researchers reported a new ransomware circling the web. Called Baxter virus, the ransomware renames the files it encrypts by adding the karusjok@gmail.com email address, a string of random characters, and the .baxter extension to…
Intel just released 29 security advisories addressing 132 various issues in the BIOS firmware of Intel processors. Affected products include Bluetooth products, Active Management Technology tools, the NUC Mini PC machines, and Intel’s own security library. According to Jerry Bryant,…
Have you come across a suspicious website, called read-the-news.online, trying to trick you into subscribing to its push notifications? Beware that this website may not be safe to use, as it may redirect you to suspicious pages deployed for scams…
In the past few years, we have reported several record-breaking password data collections, pointing at large-scale data breaches. It seems that one of the largest such collections, dubbed RockYou2021, has now been shared on a popular hacker forum. Allegedly, the…
Microsoft just fixed 50 vulnerabilities in June 2021 Patch Tuesday, five of which rated critical, and the rest important. Six of the vulnerabilities are currently deployed in malicious attacks, three of which are publicly known. The actively exploited flaws include…
We all know about the scams and dangers often lurking in Google Play Store. Now it turns out that Apple App Store is not that different, either. According to a new analysis conducted by Washington Post, fraud is widespread across…
Siloscape is the name of the first known malware targeting entirely Windows Server containers with the intention to infect Kubernetes clusters in cloud environments. The malware was discovered by Palo Alto Unit 42’s security researcher Daniel Prizmant: In March 2021,…
To the attention of TikTok users and fans: the popular video-sharing service recently revised its U.S. privacy policy, allowing it to automatically collect biometric data from the content of its users. TikTok’s Latest Privacy Policy Change on Biometric Data Collection…
