Home > Milena Dimitrova

Author Archive: Milena Dimitrova - Page 152

An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim

CYBER NEWS

CVE-2018-1000136 in Electron Framework Puts Many Popular Apps at Risk

CVE-2018-1000136 is the identifier of a security vulnerability in the Electron framework used in popular apps such as Skype, Slack, Signal, and WhatsApp. The Electron framework is open-source and is created and maintained by GitHub. The flaw was discovered by…

CYBER NEWS

IVI Systems in Volkswagen, Audi Vulnerable to Remote Hacking

Volkswagen has been found prone to car-hacking vulnerabilities, a detailed Computest report recently revealed. Researchers unearthed that the IVI systems (In-Vehicle Infotainment) in some Volkswagen models are vulnerable to remote hacking. These vulnerabilities could also lead to the compromise of…

CYBER NEWS

Nigelthorn Malware Infects 100,000 Users via Facebook, Chrome Extensions

Because of how popular it is among users worldwide, Facebook has often been leveraged in various scams and malware attacks. The social platform is regularly abused by cybercriminals who use it to spread their payloads via malicious links in messages.…

CYBER NEWS

CVE-2018-10940 Bug in Linux Kernel up to Version 4.16.5

A new critical vulnerability has been discovered in Linux kernel up to version 4.16.5, security researchers just reported. The flaw, which is given the CVE-2018-10940 identifier is said to affect the function cdrom_ioctl_media_changed of the file drivers/cdrom/cdrom.c. Related Story: CVE-2018-8781:…

CYBER NEWS

CVE-2018-10115 Affects All 7-Zip Versions Prior to 18.05

CVE-2018-10115 is the identifier of the latest security vulnerability discovered in 7-Zip that affects all the versions of the program prior to 18.05. More about 7-Zip 7-Zip is a free open-source archiver with a high compression ratio. The program is…

THREAT REMOVAL
Monero Miners image

MassMiner Malware Campaign Uses Major Exploits against Servers

A new cryptocurrency miner has been detected infecting servers worldwide. The miner, dubbed MassMiner, is exploiting several known vulnerabilities in its malicious campaigns: An Oracle WebLogic flaw known as CVE-2017-10271 A Windows SMB flaw known as CVE-2017-0143 An Apache Struts…

CYBER NEWS

Australia’s Commonwealth Bank Lost Financial Data of 12 Million Accounts

Two magnetic tapes containing transaction details for 12 million accounts that belong to Australia’s Commonwealth Bank are missing. This incident is perhaps the largest data loss in Australia. Curiously, the incident stayed under the radar for two years – until…

CYBER NEWS

CVE-2018-8781: 8-Year-Old Linux Kernel Bug Discovered

Check Point researchers recently decided to review the Linux kernel, and more specifically they looked into drivers trying to roll their own usage of the mmap() function. CVE-2018-8781 Official Description: The udl_fb_mmap function in drivers/gpu/drm/udl/udl_fb.c at the Linux kernel version…

CYBER NEWS

Twitter Gave Access to Researcher Related to Cambridge Analytica

Facebook has been widely accused of being negligent and abusive in terms of the privacy of its users. However, it is not the only social network that has been caught at the crime scene. Apparently, Twitter has recently confirmed to…

THREAT REMOVAL

Netflix Phishing Scams – How to Recognize and Counter Them

Companies such as Netflix, PayPal, DHL, and Amazon are often leveraged in various phishing scams, where cyber crooks exploit their popularity to trick users into sharing personal and financial information. There is barely a user who hasn’t received a crafty…

CYBER NEWS

Details of 25,000 Bezop Token Users Exposed by MongoDB Database

Security researchers at Kromtech recently came across a MongoDB database that contained the personal details of more than 25,000 users who invested in the Bezop (BEZ) token. The database contained plenty of personal details including full names, home addresses, email…

CYBER NEWS

Campaign Delivers Over 550 Million Phishing Emails in Q1 of 2018

Security researchers just discovered a new phishing attack that is responsible for the distribution of over 550 million emails since Q1 2018. The campaign was first detected in the beginning of January when it was observed targeting users on a…

CYBER NEWS

Largest DDoS-for-Hire Service Taken Down, Attack Price Was $14.99

The world’s biggest DDoS-for-hire service, Webstresser.org, is now down thanks to a coordinated international operation. The DDoS provider was shut down on Wednesday after a thorough investigation carried out by UK’s National Crime Agency and the Dutch National Police and…

CYBER NEWS

CVE-2018-7602 Highly Critical Drupal Bug Actively Exploited in the Wild

Drupalgeddon continues with one more remote code execution bug has been discovered in content management system. Identified as CVE-2018-7602, the highly critical vulnerability affects Drupal versions 7.x and 8.x. Affected users should immediately upgrade to Drupal v7.59 and 8.5.3. The…

CYBER NEWS

PyRoMine Utilizes EternalBlue Exploit, Disables Security Features

Cryptomining malware has dethroned ransomware as the number one cyber threat, and as such, it is evolving rapidly. That being said, a Python-based Monero miner using stolen NSA exploits and disabling security features has been discovered by security researchers. Related…

CYBER NEWS

20 Million Google Chrome Users Downloaded Fake Ad Block Extensions

Security researchers at AdGuard recently revealed some interesting findings regarding the use of fake ad block extensions. There is evidence that some twenty million Chrome users have been tricked into downloading and installing rogue browser extensions concealed as ad blocking…

CYBER NEWS

Tech-Support Scams on the Rise, Microsoft and the FBI Say

New Microsoft statistics reveal that the Windows operating system was continuously targeted by tech-support scams in 2017. More precisely, Microsoft recently reported that it received 153,000 reports from users who were targeted by tech-support scammers via the phone or the…

CYBER NEWS

Router Security Anyone? Users Widely Unaware of Router Security Risks

Not enough users are acquainted with the risks associated with their routers, and there’s a research that proves it. Broadband Genie researchers surveyed 2,205 people across the U.K. whether they had performed any router security hygiene like changing Wi-Fi passwords…

CYBER NEWS

Autofill with LinkedIn Bug Could Lead to User Data Harvesting

A critical security bug has been discovered in LinkedIn, more specifically in a social button. The exploit of the bug could have led to harvesting of LinkedIn users’ information, including information that wasn’t public. The discovery was made by Jack…

CYBER NEWS

CVE-2018-0112 in Cisco WebEx Could Lead to Remote Attacks

Another critical vulnerability identified as CVE-2018-0112 has been fixed Cisco WebEx videoconferencing software solution. Customers download and use the WebEx client application to attend meetings on Cisco WebEx Centers The bug could be leveraged by attackers to intercept conference call…

This website uses cookies to improve user experience. By using our website you consent to all cookies in accordance with our Privacy Policy.
I Agree