An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim
A new critical flaw, CVE-2019-1663, residing in Cisco wireless VPN and firewall routers was just reported. Businesses should update immediately to protect against the flaw. More specifically, CVE-2019-1663 is a serious vulnerability in the web-based management interface of the Cisco…
Coinhive just announced that the project is coming to an end very soon. According to the official statement, the service is going to be discontinued on March 8. What are the reasons for this decision? Coinhive Project Not Economically Viable…
Two high-severity flaws were discovered in the popular SHAREit app which has more than 1.5 billion users. The app is available for Android, iOS, Windows and Mac, but the two flaws were located in the Android version which has more…
A new security research “demonstrates the powerful capabilities that modern browser APIs provide to attackers by presenting MarioNet: a framework that allows a remote malicious entity to control a visitor’s browser and abuse its resources for unwanted computation or harmful…
A new set of security vulnerabilities affecting all major operating systems (Windows, macOS, Linux, and FreeBSD) has been discovered. The vulnerabilities, known as Thunderclap, could allow attackers to bypass protection mechanisms meant to guard against DMA (Direct Memory Access) attacks.…
A new study carried out by Bromium and Dr. Mike McGuire says that cybercrime through social media (Facebook, Twitter, LinkedIn, Instagram) is generating at least $3.25 billion in global revenue annually. The report is based on three key factors: “how…
Eight security issues were discovered (and patched) in the NVIDIA GPU Display Driver software, with one of the vulnerabilities affecting both Linux and Windows systems. The vulnerabilities could lead to code execution, escalation of privileges, denial of service attacks, and…
There’s hardly a day without a new vulnerability. CVE-2019-9019 is a security flaw in the British Airways Entertainment System which affects Boeing 777-36N (ER) and perhaps other aircraft, too. The vulnerability’s type is privilege escalation that is located in the…
CVE-2019-7089 is a critical zero-day vulnerability in Adobe Reader which was patched this month alongside other 42 critical flaws. The vulnerability is a sensitive data leak issue which can lead to information disclosure in case of successful exploit. It turns…
A new highly critical vulnerability, identified as CVE-2019-6340, was just discovered in Drupal, and luckily it’s already fixed in the latest version of the content management system. If you are running Drupal 7, no core update is required, but you…
Cybercriminals are constantly looking for ways to monetize their malicious campaigns as quickly as possible. Targeting retail websites has proven quite profitable, and it’s no surprise that this type of attack, shortly known as formjacking, has been prevalent in 2018.…
A recent report carried out by Nightwatch Cybersecurity indicates that a third-party Android app with Facebook API access was copying user data into storage outside of Facebook. Moreover, the data was stored insecurely in two locations. Android App with Facebook…
Rietspoof is a new type of malware that is currently being distributed in the wild via Facebook Messenger and Skype. The malware was discovered by Avast, and is being described as a multi-stage threat that combines file formats to create…
There are multiple complaints from users of torrent sites that their downloaded files contained the GandCrab ransomware and other malware, TorrentFreak recently reported. More specifically, files shared by CracksNow, a popular uploader of software cracks and keygens, have been infected.…
Would you believe it if we told you that clicking on a single malicious link could hack your Facebook account? The scenario is entirely possible due to a recently uncovered critical cross-site request forgery (CSRF) vulnerability. The Facebook CSRF flaw…
Hackers have used a two-year-old vulnerability in a software package used by remote IT support firms to gain a foothold on vulnerable networks and deploy the GandCrab ransomware on those companies’ customer workstations. The infamous GandCrab ransomware has been distributed…
Another piece of Mac malware has been discovered. More specifically, security researchers came across a new variant of the so-called Shlayer malware, which has been targeting macOS users. Shlayer is a multi-stage malware, and in its latest version it has…
If you’re a user of the VFEmail secure email provider, you most certainly have seen the following alert posted on the website: www.vfemail.net and mail.vfemail.net are currently unavailable in their prior form. We have suffered catastrophic destruction at the hands…
Another Linux vulnerability has been discovered impacting Snapd, the package installed by default in Ubuntu and used in other distros like Debian, OpenSUSE, Arch Linux, Fedora and Solus. The vulnerability could enable a local attacker to obtain administrator privileges. This…
A security researcher has discovered “a new hole” in macOS Mojave’s privacy protections. The vulnerability exists in every version of Mojave, including macOS Mojave 10.14.3 Supplemental Update which was released on February 7. The privacy hole was discovered by an…
