An inspired writer and content manager who has been with SensorsTechForum since the project started. A professional with 10+ years of experience in creating engaging content. Focused on user privacy and malware development, she strongly believes in a world where cybersecurity plays a central role. If common sense makes no sense, she will be there to take notes. Those notes may later turn into articles! Follow Milena @Milenyim
A new Windows zero-day vulnerability has been announced by CERT/CC. The organization just put out a warning of the flaw which is described as a privilege escalation one. The vulnerability was initially announced on Twitter by SandboxEscaper who also said…
Last week, we reported about CVE-2018-11776, a new highly critical vulnerability residing in Apache Strut’s core functionality, also described as a remote code execution vulnerability that affects all supported versions of Apache Struts 2. The flaw is located in the…
Another significant data breach affecting an international company was recently disclosed. T-Mobile announced that it was hit by hackers and as a result of the attack, personal information of some 2 million customers was compromised. This personal information includes name,…
A new vulnerability has been uncovered – the kind that could turn out worse than the one that triggered the Equifax breach. The vulnerability has been identified as CVE-2018-11776, residing in Apache Strut’s core functionality. It is a remote code…
Mobile privacy is an area that every user should be paying attention to. In other words, users should be very concerned with the privacy of their smartphones and the personal information shared with app developers. And there are is plenty…
To no one’s surprise, there is a relatively easy way for hackers to breach thousands of smart homes. Avast researchers recently warned about the MQTT protocol (Message Queuing Telemetry Transport) which, if misconfigured, could give hackers complete access to a…
A new announcement has been made in regards of SUSE and the availability of the enterprise Linux kernel which is created specifically for Microsoft Azure. As a result, SUSE Linux Enterprise Server 15 on-demand instances now run on a custom-tuned…
A Chrome browser vulnerability known under the CVE-2018-6177 identifier, recently discovered by Imperva researcher Ron Masas, was just patched by Google. The security flaw could allow an attacker to retrieve sensitive data from websites using audio or video HTML tags.…
Cosmos Bank, known as India’s second-largest cooperative bank, has been breached by hackers, and a total of 940 million rupees, or $13.5 million, were stolen. More specifically, attackers stole customer details via a malware attack on the bank’s ATM servers,…
Just a few days ago, security researcher Brian Krebs reported that the FBI is warning banks of cybercriminals about to carry out a “highly choreographed, global fraud scheme known as an “ATM cashout,” in which crooks hack a bank or…
A new Cisco patch is available, addressing a flaw in IOS and IOS XE switch and router software. The patch has been released in regards of a disclosure of security flaw (known as CVE-2018-0131) in the Internet Key Exchange (IKE)…
A new hack attack endangering all-in-one printer-fax machines was revealed by Check Point researchers during this year’s DEF CON. The hack, smartly dubbed Faxploit, was tested on HP machines but similar attacks could apply to other vendors and fax-enabled products…
Another day, another vulnerability that needs to be patched as soon as possible. Oracle has informed of a security flaw that affects Oracle Database versions 11.2.0.4 and 12.2.0.1 running on Windows. Technical Details about CVE-2018-3110 The vulnerability, which is given…
An alarming discovery was recently made during the Black Hat conference held in Las Vegas. Security researchers from Positive Technologies reported that vulnerabilities in mPOS (mobile Point-of-Sale) machines allow attackers to take over customer accounts and steal credit card data.…
Social Mapper is a new open source intelligence tool that uses facial recognition to correlate social media profiles. The tool has been developed by Trustwave, a company that provides ethical hacking services. Apparently, the tool has already been tested in…
A warning has been issued by the Internet Systems Consortium (ISC) about a severe vulnerability that could be leveraged in DoS attacks in the open-source BIND software. The vulnerability was discovered by security researcher Tony Finch of the University of…
Bitcoin owners that use Bitcoin ATMs should be extra careful. Security researchers have uncovered malware that is specifically crafted to target these ATMs. This malware is being traded on the Dark Web, and its price is quite high. The shift…
Part of the source code of Snapchat was leaked and made public on GitHub. Apparently, an iOS update in May exposed a small amount of the app’s source code. However, Snapchat was able to identify the mistake and rectify it…
A computer virus outbreak on the evening of August 3 compromised Taiwan Semiconductor Manufacturing Co (TSMC), the world’s largest dedicated independent semiconductor foundry. The outbreak affected a number of computer systems and fab tools in Taiwan. The virus that hit…
A couple of new critical security flaws were found in HP printers. CVE-2018-5924, CVE-2018-5925 in HP Printers One of the vulnerabilities resides in the firmware of certain HP printers, and it has been classified as very critical. This vulnerability is…
