An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim
A data breach that affects 500 million individuals was just announced. The affected party is US hotel chain Mariott, and more specifically, its Starwood subsidiary’s guest reservation network. Apparently, the network has exposed its entire database consisting of 500 million…
Cryptocurrency mining, or cryptojacking for short, is one of the major cybersecurity threats aimed at both individual users and enterprises, entire networks included. According to statistics, one in three organizations has been targeted by cryptocurrency miners. The number of cryptocurrency…
There are successful malicious campaigns, and then there are successful malicious campaigns. This story falls into the second category, as more than 1.7 million infected Windows-running computers were exploited for click fraud. The campaign has been dubbed 3ve, and has…
DNA Money, an Indian newspaper, released a report detailing how Microsoft routinely shared the financial details of Indian bank customers with US intelligence agencies. More specifically, “the data of customers running an account with banks that have migrated to Microsoft…
Nearly four years ago, Lenovo was making the headlines in a pre-installed adware debacle. Back in 2015, the computer manufacturer was caught installing the Superfish Visual Discovery comparison-search engine software by default on its consumer laptops. Shortly after that revelation,…
Deception has always been part of our lives, so have been con artists. With the evolution of the Internet and our ever-growing dependence on it, however, deception in the form of online scams and frauds has amassed. Con artists of…
Encryption and privacy are two major issues that concern online users around the globe. So any news towards their improvement is good news. Such is the announcement that encrypted email service provider ProtonMail recently launched a standalone VPN (virtual private…
Dropbox’s Offensive Security red team has discovered a set of zero-day vulnerabilities (later assigned CVE-2017-13890) in Apple’s Safari browser. The research team came across the flaws while testing the way Dropbox and its cloud storage system responded to cyberattacks. More…
According to The Register, some Amazon customers have received emails from Amazon notifying them that their names and email addresses have been “inadvertently disclosed” due to a “technical error.” There’s no information about who had access to the compromised information,…
The Emotet malware is back in active campaigns, security researchers warned. Apparently, the malware is hiding in documents in spam messages that pretend to be sent from financial institutions, or masqueraded as Thanksgiving greetings for employees. The last time we…
Have you heard of the so-called IDN homograph attack? This attack endangers Mac users who don’t update their machines regularly. Also known as script spoofing attack, the IDN (internationalized domain name) attack allows threat actors to deceive online users about…
One of the largest providers of Dark Web hosting services has been hacked, security researchers reported. Apparently, the service known as Daniel’s Hosting was hacked and taken offline. Daniel Winzen, the hosting’s developer, says that the incident occurred on November…
Positive Technologies researchers performed an extensive analysis on ATMs and how they can be attacked. ATMs from several vendors were tested, such a NCR, Diebold Nixdorf, and GRGBanking. The researchers tested a number of typical attacks and exploits that cybercriminals…
Would you be surprised to find out that Microsoft is not complying with the data collection rules established by the GDPR? More specifically, at fault of breaking the EU regulations is the telemetry data collection mechanism utilized by Microsoft Office,…
You may think that you’re safe after you’ve removed the malware from your infected online Magento store. However, it turns out that the infamous Magecart malware, known for harvesting credit card details from checkout forms, re-infects even after clean-up. The…
Microsoft’s November 2018 Patch Tuesday’s has rolled out, and it contains one particular zero-day vulnerability that needs special attention. CVE-2018-8589 was reported to Microsoft by Kaspersky Lab in October, and was quickly confirmed and assigned a CVE number. The CVE-2018-8589…
Have you been using the WordPress GDPR plugin called WP GDPR Compliance? Be cautious – the plugin has been hacked. The WP GDPR Compliance plugin enables website owners to include a checkbox to their websites that allows visitors to grant…
Aside from the high profit potential, cryptomining malware is favored by threat actors because of its ability to remain undetected on the system. Windows and macOS have both been targeted by cryptominers, and now it appears that Linux has been…
The HSBC bank has been affected by a data breach, as a result of which some of its US customers’ bank accounts were hacked. The incident took place in October. It appears that hackers may have accessed sensitive information such…
Cybersecurity firm Tenable just released their Vulnerability Intelligence Report which outlines the most prevalent vulnerabilities in terms of enterprise security. Apparently, Microsoft and Google’s software products are at the top of the list of security flaws that disrupt entire enterprise…
