An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim
For Microsoft and Windows users, 2021 starts off with a heavy Patch Tuesday, addressing a total of 83 security vulnerabilities. Microsoft fixed bugs in the Windows operating system and some issues in cloud-based products, enterprise servers, and developer tools. However,…
David Schütz, a security researcher, just published a report detailing a YouTube security vulnerability that could make private videos visible at reduced resolution. To exploit the flaw, an attacker would need to know (or guess) the video identifier. Of course,…
Sixteen vulnerabilities were discovered in the Nvidia GPU display driver and vGPU software, some of which severe. The vulnerabilities could lead to denial of service, escalation of privileges, data tampering, and information disclosure attacks. The Nvidia GPU display driver supports…
Users should patch several new browser vulnerabilities affecting Chrome, Firefox, and Edge. The vulnerabilities are rated critical and could allow attackers to hijack susceptible systems. It should be noted that the Firefox flaw identified as CVE-2020-16044 is separate from the…
The new year has started with a new strain of enterprise ransomware, and now a cryptocurrency malware. Discovered in December, ElectroRAT is a “wide-ranging operation targeting cryptocurrency users” on all major operating systems (Windows, macOS, and Linux). The malicious operation…
Are you using WhatsApp? Perhaps you are aware that Facebook owns the messaging application. Maybe this fact didn’t matter that much to the app’s dedicated users, but new Privacy Policy conditions are likely to change this attitude. WhatsApp is updating…
2021 starts with new ransomware. Called Babuk Locker, the ransomware was discovered by researcher Chuong Dong. The ransomware has attacked a small number of enterprise victims. Ransom demanded by Babuk Locker criminals varies between $60,000 and $85,000 in Bitcoin. “Since…
One of the latest significant data leaks has compromised the data of patients in the United States. Apex Laboratory, known for providing medical testing for individuals, doctors, and facilities in New York City, Long Island, and South Florida, suffered a…
T-Mobile has suffered a data breach. According to a company’s spokesperson, 0.2%, or approximately 200,000 of T-Mobile’s mobile customers were affected by an incident where phone numbers, number of lines subscribed to, and some call-related information may have been accessed.…
Security researcher Sreeram KL has reported a vulnerability in the feedback tool in Google services. The company has patched the flaw which could have allowed attackers to steal screenshots of sensitive Google Docs documents by embedding them in a malicious…
VPN apps are quite useful, protecting your identity on your mobile device when surfing the web on public Wi-Fi or mobile networks. However, like every software, VPNs are also susceptible to flaws and attacks. There are also rogue applications that…
Operation SignSight is a new supply chain attack targeted against Vietnamese private companies. SignSight attackers are smart, aiming to embed malware inside an official government software toolkit. SignSight attacks aimed against the Vietnam Government Certification Authority The attack discovered and…
Two critical vulnerabilities (CVE-2020-29491 and CVE-2020-29492) with CVSS score of 10 were discovered in specific Dell Wyse this client devices. The vulnerabilities could be exploited in remote code execution attacks to access files on compromised devices, and were reported by…
Sophos security researchers just released new information regarding the SystemBC tool used in multiple ransomware attacks. Similar approaches in how the tool is used could mean one or more ransomware-as-a-service affiliates deployed it. SystemBC is a backdoor providing persistent connection…
Is 5G dangerous? This question definitely has more than one connotation, but we are going to look at the cybersecurity risks it could pose. Security analysis recently revealed several potential weaknesses in 5G that could be exploited in denial-of-service (DoS)…
We advise you to check whether you’re running the latest version of the Firefox browser. Mozilla just fixed several vulnerabilities, one critical and several high-severity. The update is included in Firefox version 84, and it also boosts Firefox’s performance adding…
Security researchers recently uncovered Gitpaste-12, a new worm using GitHub and Pastebin for keeping component code. The new malware has 12 different attack modules available, says security firm Juniper. Gitpaste-12 Worm targeting Linux-based x86 servers The Gitpaste-12 worm became evident…
Medical data consists of highly sensitive personal and health details. If it is openly available to anyone, medical data can be abused in many ways. Unfortunately, we have seen plenty of medical breaches, and the trend continues. The Report: 45…
If you hear that a dataset of 20 million malware samples is now available online, how would that make you feel? Maybe worried? The truth is that such a dataset is now accessible to the public, but as a part…
Security researchers Aleksei Stennikov and Timur Yunusov recently unearthed vulnerabilities in two of the largest manufacturers of point-of-sale (PoS) devices – Verifone and Ingenico. The vulnerabilities presented during Black Hat Europe 2020 could have enabled cybercriminals to steal credit card…
