An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim
Security researchers from Sophos Labs recently tracked a new campaign distributing the well-known Raccoon inforstealer. The malware, which is run on as-a-service basis by its developers, has been updated with new tactics, techniques and procedures to steal critical information from…
How dangerous are software supply chain attacks? The European Union Agency for Cybersecurity, shortly known as ENISA recently analyzed 24 recent attacks, discovered between January 2020 and early July 2021, only to conclude that strong protection is not sufficient enough.…
Mulkey is the name of an ad-supported (adware), unwanted application targeting Mac users. If you have it installed on your macOS, you may be seeing intrusive advertisements in your browsers. If you don’t recall downloading a program called Mulkey, then…
Cybersecurity researchers recently detected new activities related to a highly modular backdoor and keylogger. Called Solarmarker, the threat has a multistage, heavily obfuscated PowerShell loader that executes the .NET backdoor. Solarmarker Backdoor Technical Details Solarmarker activities were observed independently by…
Microsoft’s security team investigated an ongoing malicious campaign using fraudulent call centers to trick users into downloading the BazaLoader (also known as the BazarLoader) malware. Called BazaCall, the campaign appears to be more dangerous than initially suspected. The reason for…
Three new Kaseya zero-day vulnerabilities were just disclosed in Kaseya Unitrends, including an RCE and an authenticated privilege escalation on the client-side. According to a recently released public advisory warning, the Kaseya service should be kept off the internet until…
Researchers from CISA, ACSC, NCSC, and the FBI compiled a list of the most exploited vulnerabilities throughout 2020. Apparently, cybercriminals leveraged recently disclosed security flaws to get into vulnerable systems. According to details available the U.S. government, most of the…
Cybersecurity researchers just reported a new ransomware gang, called BlackMatter, claiming to be the successor of REvil. Related: Kaseya Obtains Universal Decryption Key for REvil Ransomware A New Ransomware Player: BlackMatter The BlackMatter ransomware is currently targeting companies with revenue…
A zero-day vulnerability in iOS, iPadOS, and macOS was just fixed with an urgent security update. Apple said the zero-day may have been exploited. CVE-2021-30807 Zero-Day Exploited in the Wild Known as CVE-2021-30807, the flaw is a memory corruption issue…
Olympic Games Tokyo Data Leak Reported According to a government official, an online data leak affecting the personal information of Tokyo Olympics ticket purchasers has happened, Kyodo News recently reported. The same details of Paralympic ticket owners and individuals who…
Kaseya, the company that got hit by a large-scale REvil ransomware attack, says it has obtained the official decryption key, three weeks after the attack took place. Kaseya Obtains Universal Decryptor “On 7/21/2021, Kaseya obtained a decryptor for victims of…
A critical flaw in the Atlassian platform, in multiple versions of its Jira Data Center and Jira Service Management Data Center products, should be patched immediately. The software engineering platform is used by 180,000 customers which are now endangered by…
New Oracle WebLogic Server vulnerabilities were just reported with the Critical Patch Update for July 2021. 342 issues were fixed across multiple Oracle products, some of which remotely exploitable and enabling attackers to take control of vulnerable systems. CVE-2019-2729 in…
Formbook is an old infostealer, more exactly form-stealer, and keylogger that has now added Mac users to its target list. Apparently, the malware is being sold for as little as $49 on underground forums, enabling cybercriminals to perform various malicious…
What Is OfferCore? OfferCore, also known as PUP.Optional.OfferCore, is a detection of a software bundler that installs various adware and potentially unwanted apps (PUAs). The bundler could also be used to install legitimate Windows apps. However, multiple reports indicate that…
A new, highly severe privilege escalation vulnerability in HP printer drivers, also used by Samsung and Xerox, was just disclosed. The vulnerability, which has been assigned the CVE-2021-3438 identifier, affects hundreds of millions of Windows machines. What is most concerning…
A new severe security vulnerability in Windows 10 has been uncovered. Called HiveNightmare, the vulnerability has been assigned the CVE-2021-36934 identifier. HiveNightmare: CVE-2021-36934 Windows 10 Version 1809 (and Newer) Vulnerability What type of vulnerability is HiveNightmare? According to Microsoft’s official…
Googleapis Redirect Virus Have you been experiencing the so-called Googleapis redirect? Associated with the search.googleapis.com, portal.googleapis.com, and googleapis.com domains, Google APIs is in fact a legitimate service provided by Google. Google APIs are application programming interfaces developed by the tech…
What Is EdgeTechnology? EdgeTechnology, detected as Adware.MacOS.EdgeTechnology, is a potentially unwanted app (PUA) targeting Mac users. EdgeTechnology is also classified as adware, browser hijacker, and browser redirect, and as such, it may affect your browsers. As a result of having…
What Is HyperExtra Adware? Security researchers recently detected a new adware threat endangering the security of macOS users. Detected as Adware.MacOS.HyperExtra, this piece of unwanted software can trigger the display of numerous advertisements, collect various browsing or system details about…
