An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim
Security researcher SandboxEscaper has released the details of CVE-2019-0841, another zero-day affecting Windows 10 and Windows Server 2019. The details have been published on GitHUb and are now available in the same account with the previously disclosed eight zero-days. The…
CVE-2019-10149 is a critical security vulnerability in the Exim mail transfer agent (MTA) software. The flaw is located in Exim versions 4.87 to 4.91 included, and is described as improper validation of recipient address in deliver_message() function in /src/deliver.c which…
GoldBrute is the name of a new botnet which is currently scanning the internet and attempting to locate poorly protected Windows machines with RDP (Remote Desktop Protocol) connection enabled. The botnet was discovered by security researcher Renato Marinho of Morphus…
A new report by Bromium titled Behind the Dark Net Black Mirror offers a detailed analysis of the dark net markets. The report has been carried out by Dr. Michael McGuire who will present his findings in full during the…
Check Point security researchers revealed multiple critical vulnerabilities in a popular IPTV platform called Ministra. The vulnerabilities could allow attackers to bypass authentication and obtain users’ information. The impact of the vulnerabilities could be quite devastating. The research shows that…
The well-known RIG exploit kit is currently distributing the Buran ransomware, which is a version of Vega (VegaLocker) ransomware. A security researcher known as nao_sec was the first to notice a malvertising campaign redirecting users to the RIG EK which…
A new extensive research paper titled “Improving Vulnerability Remediation Through Better Exploit Prediction” reveals the number of discovered vulnerabilities in the past ten years (between 2019 and 2018), and also shares the percentage of actively exploited flaws. Surprisingly, only 4,183…
According to multiple user reports, Windows 10 users in Germany are currently experiencing malvertising campaigns when using their default browsers. The malicious ads are being displayed on the Microsoft Advertising network in ad-supported applications. What Is Microsoft Advertising? As explained…
Quest Diagnostics, the popular US clinical laboratory, has suffered an enormous data breach. As a result, the information of 11.9 million patients has been exposed. According to the official statement, the American Medical Collection Agency (AMCA), a billing collections service…
What is .lanset ransomware also known as .lanset file virus? What to do if your files were encrypted by .lanset ransomware? If your files are encrypted and the .lanset extension is appended to them, then you are dealing with a…
What is .redmat ransomware a.k.a. .redmat files virus? What to do if your files were encrypted by .redmat ransomware? If your files are encrypted with the .redmat extension appended to them, then you are dealing with a serious ransomware infection.…
Security researcher Dhiraj Mishra just discovered a security vulnerability, CVE-2019-12477, in the SUPRA smart TV brand. Apparently, Supra Smart Cloud TV allows remote file inclusion in the openLiveURL function, which could enable a local attacker to broadcast fake video without…
A new report carried out by Guardicore Labs has outlined the details of a prevailing cryptojacking (cryptomining) operation targeting Windows MS-SQL and PHPMyAdmin servers on a global scale. Related: New Scranos Rookit Can Damage Your System in Multiple Ways Nansh0u…
A single database has exposed the records of tens of millions of users of dating apps. The database which was discovered by security researcher Jeremiah Fowler is not password-protected. Most of the affected users are Americans, as revealed by the…
CVE-2019-12329 is an address bar spoofing vulnerability in the DuckDuckGo browser for Android version 5.26.0. The browser has more than 5 million installations, and its users are exposed to URL spoofing attacks. The vulnerability was discovered by security researcher Dhiraj…
Did you hear about the most dangerous laptop in the world, infected with some of the most devastating viruses? The laptop, a 2008 Samsung 10.2-inch NC10-14GB netbook, has been sold in an auction for $1.35 million by an unknown individual.…
Canva, the Australia-based graphic-design online application, has been hit by an enormous data breach. Apparently, the usernames and email addresses of 139 million users of Canva have been exposed. Passwords were also obtained but they remain intact as they are…
An unpatched vulnerability in macOS 10.14.5 also known as Mojave was recently discovered. The flaw could allow an attacker to execute arbitrary code without the need of user interaction, thus bypassing Gatekeeper. This discovery comes from researcher Filippo Cavallarin from…
Another proof-of-concept about a zero-day exploit affecting Windows 10 has been released. The PoC code is published on GitHub and comes from an anonymous researcher or possible hacker known as SandboxEscaper, and that’s the fifth time the hacker releases a…
Another large-scale data incident has been reported, this time affecting Instagram users. More specifically, information belonging to millions Instagram influencers, celebrities and brand accounts has been exposed online. The database was hosted by Amazon Web Services, TechCrunch reported, and it…
