An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim
A new iOS jailbreak was recently released by a group of cybersecurity experts and reverse engineers, known as the Unc0ver team. The jailbreak, called UnC0ver 5.0.0, can root and unlock all iOS devices, including the ones running the most recent…
Facebook is facing another penalty over false data privacy claims. According to Canada’s Competition Bureau, Facebook has mishandled user information by creating the false feeling that users could control who could see and access their personal information via privacy features.…
There’s a new high severity, remote code execution (RCE) vulnerability in VMware Cloud Director. Tracked as CVE-2020-3956, the flaw triggers code injection that allows authenticated attackers to send malicious traffic to Cloud Director. This could then lead to arbitrary code…
GhostDNS exploit kit was making the headlines last year, when it was first discovered by Qihoo 360’s NetLab researchers. Back then, the researchers came across a widespread malicious campaign that had hijacked more than 100,000 home routers to modify their…
The latest large-scale data leak involves the personally identifiable information of 192 million data records of customers in Brazil. Natura, one of the country’s largest cosmetics companies, had a leaky database hosted on two unprotected US-based Amazon servers. Natura Cosmetics…
Another day, another discovery of vulnerabilities. A new malicious attack exploiting the way DNS recursive resolvers operate was just discovered. In detail, the attack exploits the way the resolvers work when receiving NS referral response that contains nameservers but without…
A new type of malicious attack was recently disclosed, based on a new security flaw in the Bluetooth wireless protocol. The attack has been called BIAS (Bias Impersonation AttackS) and is given the CVE-2020-10135 identifier, and it affects the classic…
Mozilla has decided to drop support for Flash for the Firefox browser. This change is going to happen by December 2020. Why is Mozilla implementing this change? According to Plugin Roadmap for Firefox, the main reason is security: Plugins are…
Cybersecurity researchers recently identified more than 300 phishing campaigns created to harvest personal and banking details from potential victims. Most of these scams are using sites that are identical to the original ones, made with authentic images and user interfaces.…
What is the current state of iOS security? According to exploit acquisition firm Zerodium, iOS security is not doing that great anymore. Five years ago, Zerodium was offering a reward of $1 million for a browser-based, untethered jailbreak in iOS…
The Cybersecurity and Infrastructure Security Agency (CISA), together with the Federal Bureau of Investigation (FBI), and the broader U.S. Government have released an alert detailing the 10 most exploited vulnerabilities in the period between 2016 and 2019, and also so…
Remember the Astaroth Trojan? Considered to be one of the stealthiest pieces of info-stealing malware, Astaroth continues to evolve in its latest attacks. According to a new report released by Cisco Talos, the malware has obtained two major updates. This…
A new cybersecurity analysis indicates that the number of malware infections has increased significantly for the last month. According to data compiled by researchers at AtlasVPN and Kaspersky’s real-time cyberthreat map, there have been more than 10 million malware infections…
MobiFriends dating app has exposed the personal information of 3,688,060 users. MobiFriends’ user details were posted online and are currently available for download on multiple destinations. The security breach which caused the compromise of users’ personal details occurred in January…
Several security vulnerabilities in Citrix ShareFile content collaboration platform have been discovered. CVE-2020-7473, CVE-2020-8982, CVE-2020-8983 Identified as CVE-2020-7473, CVE-2020-8982, and CVE-2020-8983, the vulnerabilities could allow an unauthenticated attacker to compromise the storage zones controller, enabling the attacker to access ShareFile…
A new strain of IoT malware, dubbed Kaiji, was just discovered by security researchers MalwareMustDie and Intezer Labs. The new IoT malware is built to target Linux-based servers and connected devices to launch DDoS attacks, and was coded by Chinese…
CAM4, an adult live streaming website, has been through a data breach which exposed over 7TB of personally identifiable information of its members. The incident was discovered Security Detectives and Anurag Sen. The PII was stored on more than 10.88…
TaskProduct Mac TaskProduct Mac is an adware that attaches to the browser through bundled installations. Users are usually unaware of its presence until various pop-up ads and banners start appearing. Although adware is not malicious, clicking any of the provided…
The release of Windows 10 May 2020 Update has been pushed to the end of the month, most likely due to a zero-day vulnerability. However, security experts are worried that even when if flaw is patched in a timely manner,…
Just like any other form of malware, Android malware is also evolving, thus becoming more versatile in the damage it does. The latest strain of such malware is strictly after financial data while in the meantime conducting spy operations. The…
